FreeBSD – WindowsTechs.com

Is it possible for a hostname lookup to be temporarily lying (wrong ISP)?

Posted on February 26, 2023 by Cathan

In 2017, I was running a local website on my own dedicated server in a professional data center. FreeBSD. Installed by me remotely. Maintained carefully by me. No other human users than myself. I was the only one with SSH access or indeed … Continue reading Is it possible for a hostname lookup to be temporarily lying (wrong ISP)?→

Ping of death! FreeBSD fixes crashtastic bug in network tool

Posted on December 5, 2022 by Paul Ducklin

It’s a venerable program, and this version had a venerable bug in it. Continue reading Ping of death! FreeBSD fixes crashtastic bug in network tool→

This Week in Security: IoT In the Hot Tub, App Double Fail, and FreeBSD BadBeacon

Posted on June 24, 2022 by Jonathan Bennett

[Eaton Zveare] purchased a Jacuzzi hot tub, and splurged for the SmartTub add-on, which connects the whirlpool to the internet so you can control temperature, lights, etc from afar. He …read more Continue reading This Week in Security: IoT In the Hot Tub, App Double Fail, and FreeBSD BadBeacon→

Would FreeBSD and OpenBSD have similar known-past-vulnerability stats if they were configured similarly?

Posted on November 18, 2021 by bobcat

OpenBSD has had much fewer "code execution" vulnerabilities and even fewer exploits than FreeBSD, according to https://cvedetails.com :

https://www.cvedetails.com/product/163/Openbsd-Openbsd.html?vendor_id=97
https://www.cvedeta… Continue reading Would FreeBSD and OpenBSD have similar known-past-vulnerability stats if they were configured similarly?→

FreeBSD Experiment Rethinks the OS Install

Posted on August 11, 2021 by Tom Nardi

While the medium may have evolved from floppy disks to DVDs and USB flash drives, the overall process of installing an operating system onto a desktop computer has been more …read more Continue reading FreeBSD Experiment Rethinks the OS Install→

IoT bug report claims “at least 100M devices” may be impacted

Posted on April 13, 2021 by Paul Ducklin

The programmers among us are learning… but not always quickly enough, it seems. Here’s some food for coding thought… Continue reading IoT bug report claims “at least 100M devices” may be impacted→

New DNS vulnerabilities have the potential to impact millions of devices

Posted on April 13, 2021 by Help Net Security

Forescout Research Labs, in partnership with JSOF, disclosed a new set of DNS vulnerabilities, dubbed NAME:WRECK. These vulnerabilities affect four popular TCP/IP stacks – namely FreeBSD, IPnet, Nucleus NET and NetX – which are commonly pre… Continue reading New DNS vulnerabilities have the potential to impact millions of devices→

Is native OpenZFS (on FreeBSD) block-level encryption secure?

Posted on December 22, 2020 by Ivanov

I am considering using OpenZFS on FreeBSD. I am not quite sure how secure native OpenZFS encryption is? If somebody steals my server and the disks, is he able to decrypt the files?
In a Discord room I found a possible answer:

Native ZFS e… Continue reading Is native OpenZFS (on FreeBSD) block-level encryption secure?→

LFI to RCE through User-Agent

Posted on June 24, 2020 by mat80n2012 cerqueira

I’m doing a pentest on a FreeBSD machine running CuppaCMS. Already managed to login into the CMS with admin privilege, but it only takes me to a manager menu, with some options to change some tables and stuff like that, no RCE visible esca… Continue reading LFI to RCE through User-Agent→

New fuzzing tool for USB drivers uncovers bugs in Linux, macOS, Windows

Posted on May 28, 2020 by Zeljka Zorz

With a new fuzzing tool created specifically for testing the security of USB drivers, researchers have discovered more than two dozen vulnerabilities in a variety of operating systems. “USBFuzz discovered a total of 26 new bugs, including 16 memo… Continue reading New fuzzing tool for USB drivers uncovers bugs in Linux, macOS, Windows→