OpenBSD 6.4 Release

OpenBSD 6.4 Release

OpenBSD 6.4 Release

OpenBSD 6.4 release OpenSSH's configuration files to use service names instead of port numbers, and the Clang compiler will now replace some risky ROP instructions with safe alternatives. Perhaps the most interesting feature is the unveil() system call which allows applications to sandbox themselves, blocking their own access to the file system. This is especially useful for programs which operate on unknown data which may try to exploit or crash the application: "New unveil(2) system call to restrict file system access of the calling process to the specified files and directories.

OpenBSD 6.4

amd64/install64.iso (343MB, SHA256signature), i386/install64.iso (324MB,

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.