![[BACK]](/icons/back.gif){kind=icon}
Return to 72.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www|
Return to 72.html CVS log | Up to [local] / www |
| version 1.55, 2022/10/04 11:29:34 | version 1.56, 2022/10/04 20:14:26 | ||
|---|---|---|---|
|
|
||
| locked ypbinding file, thereby removing a horrible hack to support YP | locked ypbinding file, thereby removing a horrible hack to support YP | ||
| lookups in programs using strong | lookups in programs using strong | ||
| <a href="https://man.openbsd.org/pledge.2">pledge(2)</a> rules. | <a href="https://man.openbsd.org/pledge.2">pledge(2)</a> rules. | ||
| <li>Processes that pledge("vminfo") may only use the <a | <li>Processes that pledge("vminfo") may now use the read-only <a | ||
| href="https://man.openbsd.org/swapctl.2">swapctl(2)</a> operations | href="https://man.openbsd.org/swapctl.2">swapctl(2)</a> operations | ||
| SWAP_NSWAP and SWAP_STATS providing information on swap devices. | SWAP_NSWAP and SWAP_STATS providing information on swap devices. | ||
| <li>Randomized the rekey interval of <a | <li>Randomized the rekey interval of <a | ||
| href="https://man.openbsd.org/arc4random.3">arc4random(3)</a>. | href="https://man.openbsd.org/arc4random.3">arc4random(3)</a>. | ||
| <li>Reduce the attack surface by introducing a 'local bind' mode to <a | <li>Reduce the attack surface by introducing a 'local bind' mode to | ||
| href="https://man.openbsd.org/ypldap.8">ypldap(8)</a>. In this mode | <a href="https://man.openbsd.org/ypldap.8">ypldap(8)</a>. In this mode | ||
| ypldap binds its RPC sockets to loopback, so YP services are only | ypldap binds its RPC sockets to loopback, so YP services are only | ||
| available to the host it's running on. ypldap replaces <a | available to the host it's running on. ypldap writes the YP binding | ||
| href="https://man.openbsd.org/ypbind.8">ypbind(8)</a> and writes the | file in /var/yp/binding itself and replaces <a | ||
| YP binding file in /var/yp/binding itself. This also implies that <a | href="https://man.openbsd.org/ypbind.8">ypbind(8)</a> and <a | ||
| href="https://man.openbsd.org/ypserv.8">ypserv(8)</a>. This also | |||
| implies that <a | |||
| href="https://man.openbsd.org/portmap.8">portmap(8)</a> doesn't need | href="https://man.openbsd.org/portmap.8">portmap(8)</a> doesn't need | ||
| to be running anymore when local bind mode is used. | to be running anymore when local bind mode is used. | ||
| <li>Changed the /sbin daemons <a | <li>Changed the /sbin daemons <a |