i386 Package Repo Live

The i386 package repo based on the hardened/current/master branch is now live! The packages are signed by us. The RSA certificate used for package signing can be found attached to this post and can additionally be found here. The repository can be found here. We will be updating the i386 repo on a weekly basis.

amd64 Package Repo Live

The amd64 package repo based on the hardened/current/master branch is now live! The packages are signed by us. The RSA certificate used for package signing can be found attached to this post and can additionally be found here. The repository can be found here. We will be updating the amd64 repo on a weekly basis.

BSDNow Interview

I had the opportunity to be interviewed by Allan Jude and Kris Moore for the BSDNow video podcast. I had a lot of fun talking with them. I've interacted with them a little bit over the past couple years. They are great hosts and had some terrific questions for me. Great publicity for HardenedBSD.

Tags:

New Build

We've just published a new build, so head on over to the Latest Builds page to check it out. The new build contains a new HardenedBSD-only change (so a change we will not upstream) that adds a sysctl tunable to fully disable mmap(MAP_32BIT) support on amd64. Mappings that reside only in the 32bit address space don't have enough bits to randomize, so disabling this feature entirely removes one more attack vector. Now that pkg 1.3.7 is out, we're building our first pkg repo.

Tags:

builds

New Site

Welcome to HardenedBSD! This project aims to provide security enhancements to the FreeBSD project. We plan to upstream most, if not all, our projects. As this site is new, please expect changes and occasional downtime.

HardenedBSD

i386 Package Repo Live

amd64 Package Repo Live

BSDNow Interview

Tags:

New Build

Tags:

New Site

Pages

Donate to HardenedBSD

2021 Donation Status

Links

Tags:

Tags:

Pages

Donate to HardenedBSD

2021 Donation Status

Search form

Links