Home » Mailing list archives » openbsd-announce » 2004 » October » 15

Stephanie for OpenBSD 3.6 released

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: br1an <brian@...>
Cc: <announce@...>
Subject: Stephanie for OpenBSD 3.6 released
Date: Friday, October 15, 2004 - 8:17 am

Stephanie for OpenBSD 3.6 is released

-------------------------------------


Introduction

------------

Stephanie is an OpenBSD hardening package. It's compiled of kernel and

userland patches that when used add several security features. In this

version included are:


  - Vexec: Verify file integrity before executing/opening it.

  - TPE: Prevent untrusted users executing files in untrusted locations.

  - Privacy: Privacy extensions, in-kernel and userland.


What's new?

-----------

  - Vexec: Mostly rewritten. Now uses hash tables to store data,

    introducing O(1) performance in best case and O(n) where 'n' is

    number of inodes that produce same hash on a given device in worst

    case.


    Noting the recent collision discovery in SHA-0, it's worth

    mentioning that Vexec offers 6 hash types (MD5, SHA1, SHA256,

    SHA384, SHA512, and RMD160 - all hash types supported by the OpenBSD

    3.6 kernel) and it's design allows easy extensions for adding new

    hash types, if required. (read NEW_HASH)


  - Privacy: More privacy features. Namely, there are hooks in netstat,

    w, who, last, and finger. The output is filtered according to the

    features status.


  - The trustcheck(2) syscall has been removed; now interaction with

    Stephanie's settings - including trust status of current process -

    is done solely using sysctl.


License

-------

Stephanie for OpenBSD 3.6 is mostly a rewrite. BSD-licensed code from

NetBSD and Brett Lymn is no longer in use, so Stephanie moves to an

ISC-style license, available in

http://ethernet.org/~brian/Stephanie/doc/LICENSE


Download

--------

Stephanie for OpenBSD 3.6 can be downloaded from its official homepage

at http://ethernet.org/~brian/Stephanie/


Support

-------

Please mail me with any questions, comments, bugs, and feedback in

general. Remember - DO NOT MAIL OPENBSD MAILING LISTS WITH QUESTIONS

ABOUT STEPHANIE! unless you really want to. Anyway, CC me if you do.


Make sure you've read stephanie(7) after installation is complete.


Credits

-------

Stephanie for OpenBSD 3.6 was written and is maintained by br1an. Send

your feedback to .


Thanks to Eli Klein, Rod Cordova, and super.


-b.
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
BSDCan 2004 announcement, Dan Langille, (Wed Jan 14, 4:14 pm)
OpenSSH 3.8 released, Markus Friedl, (Tue Feb 24, 12:29 pm)
Register for the USENIX AsiaBSDCon2004, Michael C. Wu, (Mon Mar 8, 4:04 am)
OpenBSD 3.5 released!, Todd C. Miller, (Fri Apr 30, 7:05 pm)
SUCON'04 - Registration Opened, Henning Brauer, (Tue Jul 27, 6:04 pm)
The Book of PF by Peter N.M. Hansteen., Austin Hook, (Mon Dec 24, 12:28 pm)
The OpenSSH project turns five years old, Damien Miller, (Mon Sep 27, 9:30 pm)
Stephanie for OpenBSD 3.6 released, br1an, (Fri Oct 15, 8:17 am)
NYCBUG : Michael Shalayeff on the hppa port and OpenBSD Hack..., Marco Scoffier, (Wed Mar 2, 1:55 am)
3.7 is released!, Theo de Raadt, (Thu May 19, 12:40 pm)
Call for Papers: Eurobsdcon2008 in Strasbourg, France, Mathieu Arnold, (Sun Mar 30, 4:52 pm)
OpenNTPD 3.7 released, Henning Brauer, (Wed Jun 8, 1:42 pm)
Portuguese User Group Meeting, Nuno Morgadinho, (Sat Jul 9, 5:42 pm)
Announce: OpenSSH 4.2 released, Damien Miller, (Thu Sep 1, 9:21 am)
OpenBSD 3.8 released November 1, 2005, Theo de Raadt, (Tue Nov 1, 2:30 am)
BSDCan 2006: Call For Papers - reminder, Dan Langille, (Thu Jan 12, 10:12 am)
BSDCan - two weeks away!, Dan Langille, (Thu Apr 27, 1:19 pm)
AsiaBSDCon 2007 - Call for Papers, Hiroki Sato, (Sun Aug 20, 11:09 am)
Announce: OpenSSH 4.4 released, Damien Miller, (Wed Sep 27, 6:34 pm)
BSDCan 2007 date change, Dan Langille, (Sun Oct 29, 11:53 am)
Announce: OpenSSH 4.6 released, Damien Miller, (Wed Mar 7, 7:10 pm)
Thu gui tu The Transport Journal Online, The Transport Journal Online..., (Wed May 21, 4:51 am)
OpenBSD 4.1 Released, Bob Beck, (Tue May 1, 10:51 am)
EuroBSDcon2007 registration is open! (plus poster-session i..., Poul-Henning Kamp, (Sun Jun 17, 5:43 am)
Announcing: The OpenBSD Foundation, Bob Beck, (Wed Jul 25, 7:44 pm)
EuroBSDCon 2007 - less than four weeks!, Simon L. Nielsen, (Tue Aug 21, 4:47 pm)
OpenBSD 4.4 released, Nov 1. Enjoy!, Theo de Raadt, (Fri Oct 31, 12:34 pm)
Announce: OpenSSH 5.2 released, Damien Miller, (Sun Feb 22, 10:23 pm)
OpenBSD/sparc64 X support, Jason Wright, (Fri Feb 8, 3:56 pm)
Revised OpenSSH Security Advisory (adv.token), Markus Friedl, (Fri Apr 26, 7:59 am)
BSD "Lightning talks" wanted for O'Reilly Conference, Brett Glass, (Wed Jun 12, 7:35 pm)
OpenBSD 4.5 released, May 1, 2009, Theo de Raadt, (Thu Apr 30, 1:07 pm)
BSDCon 2003 - Call for Papers, Alex Walker, (Mon Feb 3, 8:10 pm)
BSDCon 2003 Submission Deadline April 1, 2003, Todd C. Miller, (Thu Mar 20, 3:52 pm)
Announce: OpenSSH 5.1 released, Damien Miller, (Mon Jul 21, 8:11 pm)
(Open)BSD System Administration Training, Jeremy C. Reed, (Fri Jul 18, 8:09 pm)
BSDCon 03 reminder, Todd C. Miller, (Thu Aug 14, 3:35 pm)
OpenBSD 3.4 Released, Ted Unangst, (Thu Oct 30, 7:22 pm)
Reclaim Bank Charges: Contact us!, PPI Claims Specialists, (Sun Sep 20, 5:24 pm)