Update on HardenedBSD

A Look Back on 2016

As 2016 is coming to a close, I'd like to reflect about what we've accomplished in HardenedBSD. A whole lot of work has been done and we still have a lot of work ahead of us.

  1. All of base and ports is compiled as Position-Independent Executables (PIEs) along with full RELRO (note: there are some exceptions).
  2. I started hardening some syscalls and sysctl nodes. You'll now notice that the gpart command must run as root because of that. Jailed environments and unprivileged users now cannot see which kernel modules are loaded and root cannot see the base address of kernel modules.
  3. Documentation is now a key priority. Work has started on the HardenedBSD Handbook. We have a long way to go, but the foundation has been laid.
  4. Work on cleaning up our PaX SEGVGUARD implementation has started. We're eventually going to take a whole different approach. Though the current implementation is useful, we haven't guaranteed its stability.
  5. Intel SMAP/SMEP support working in a private feature branch.
  6. LibreSSL imported into HardenedBSD base and made the default in 12-CURRENT.
  7. hbsd-update continues receiving more features and can be considered production-ready. Though there's still more work to do, it is feature complete for the vast majority of use cases.
  8. New, self-hosted package building server.
  9. Port HardenedBSD ASLR and SEGVGUARD to OPNsense, complete with PIE base/ports. Every single OPNsense install has ASLR enabled.
  10. Help FreeBSD with the RPI3 efforts. Test and research clang 3.9.0 and ld.lld on the RPI3. HardenedBSD works flawlessly on the RPI3, showing the strength of HardenedBSD's portability and robustness.
  11. Help FreeBSD with their efforts to port Linux DRM to FreeBSD. This includes buying multiple new laptops and running HardenedBSD with the drm-next-4.7 bits imported.

New Server Install - Downtime Ahead

Just a heads up to all of our faithful readers, we are getting a new web server installed this weekend. The results will be a much faster user experience, with foundations laid for a site overhaul when the crew is ready. The downside is that there will be some downtime this weekend. Just wanted to give everybody a heads up, as I'm sure at least one lamer out there will claim to have DDoS'd us offline. Everything should be up and running no later than Monday, August 29th, 2016. While we're still online, you should check out new tutorials by r3q13m - our latest crew member of SX.

r3q13m Promoted to Crew

Congratulations to r3q13m for being promoted to the rank of SoldierX crew for his hard work; on the software projects RAPTORRDP,Mirage Disk Image and his tutorial "Software as a Service (SAAS) demystified from a programming perspective." His enthusiasm is an encouragement, and we await to see more great feats. Again, congrats well deserved!

OFACE ISO Alpha now available!

Up to this point, we have encouraged people to create their own ISOs and thumbdrives to run OFACE. After revisiting this topic though, I have decided to release a proof of concept ISO with the current version of OFACE. Please note that I am in the midst of looking at making OFACE itself more powerful so this is nowhere near finalized yet and that this release is for VIP only. All details along with a download link are available via its SX Labs entry for those who are interested.

Where are some of our tax dollars going?

Today, RaT posted on our forums about a recent connection discovered concerning some recent bot issues that we have had. I won't elaborate much as I feel that he did an effective explanation of it. What I will say is that I am nothing short of outraged by this misuse of tax dollars and the level of shadiness that this supposed place of "higher learning" has displayed. Furthermore, the staff at this university that carried forward with this should be nothing short of ashamed of themselves for employing such disgusting tactics that not only are unnecessary, but are a complete waste of time and money on all sides.

Shinobi Announces Presidential Campaign!

We here at SoldierX usually don't get involved in politics and with good reason. Typically, we have seen that such an involvement could harm our bottom line which is the primary reason. However, this election cycle has been anything but normal to say the least. After watching the primaries unfold, our very own Shinobi has decided that he has had enough and has announced that he will be running for the President of the United States of America.

When asked about his platform, his response was telling about the situation he feels our country is in, and his rhetoric was relentless. "Our country is dealing with a giant mess due to numerous failures to address pivotal issues within the last twenty five years due to party lines, and it's time to end this crap." which is a sentiment shared amongst many amongst the crew. His adoption of the slogans "With Jews You Lose" and "Let's Dump Trump" however is a controversial one. When asked about his choice of slogans, Jewish crew member RaT stated that he didn't approve of the message, but he approves of Shinobi. The most controversial aspect of his campaign is his plan after inaguration, in which he will reportedly defecate on the desks of numerous heads of federal agencies including, but not limited to the NSA, FBI, FDA, USDA, VA, DOJ, DOE, and Department of Homeland Security as he feels that they are in part responsible for the mess the country is in and they should have to deal with their share of the mess.

Syndicate content