I really wish #Linux had #DTrace. It would make security auditing of
proprietary applications so much easier.

#WinWithBSD #RUNBSD

I really wish tar on #Linux supported libarchive. It's nice to have a unified interface for all archive types.

Examples:

tar -tf somefile.tar
tar -tf somefile.zip
tar -tf somefile.iso

Also: SIGINFO.

This is why we #WinWithBSD.

@lattera
> #WinWithBSD

Sure, just tell me how can I *reliably* determine parent process name and its command line arguments from a shell script on BSDs – which is the only family of operating systems that gave me problems with it in a program that I was writing – and I’m gonna start winning with it alright.

What is old is new again. Please stop using procfs (or sysfs or *fs
for sysadmin fecalmatter).

https://seclists.org/oss-sec/2022/q4/209

#infosec #Linux #WinWithBSD

I really hate having to reinvent the wheel so freaking often due to the GPL.

#WinWithBSD

#Linux userns, the gift that keeps on giving.

https://blog.aquasec.com/cve-2022-0185-linux-kernel-container-escape-in-kubernetes

#WinWithBSD

I'm starting to get a hang of this Prometheus + Grafana thing. I like what I'm seeing. And I love how easy it is when all of it's deployed on #HardenedBSD.

The only system I've had trouble with is an #Ubuntu #Linux VM. It exports different metrics than expected.

#WinWithBSD

Because no one ever wants to know the full IP address of connected users to #Linux systems.

#WinWithBSD

No need to build your own version of #HardenedBSD just to install onto serial-only devices. Just select the serial mode in the bootloader.

https://battlepenguin.com/tech/installing-void-linux-with-a-serial-terminal/

#Linux #WinWithBSD

This exact reason is just one reason why I love SIGINFO.

#WinWithBSD

I've not ran Linux, Windows, or macOS in a serious manner in over a decade: https://medium.com/design-and-tech-co/do-you-really-need-to-use-linux-5e234f2be07c

#WinWithBSD

Holy cow. Knowing whether you have permission to access /proc/pid/mem in #Linux is complicated. No wonder why there have been so many security bugs historically with that and ptrace.

Source: https://blog.cloudflare.com/diving-into-proc-pid-mem/

#WinWithBSD

The advantage of running #nmap on #FreeBSD / #HardenedBSD: SIGINFO support.

#WinWithBSD

I know I keep repeating this, but I REALLY dislike that #Linux does not have SIGINFO.

Waiting for systemctl restart someService and there's no output.

I'm sitting here, thinking "gee, what's going on? what's taking so long?"

^TTT

grrrr

#WinWithBSD

Today: I really, really, really wish #Linux had #SIGINFO.

#WinWithBSD

After weeks of careful planning and preparation, I have now completed the migration of ${DAYJOB}'s network from #Checkpoint to #OPNsense.

Feels good to secure our network based on OPNsense + #HardenedBSD.

#infosec #networking #WinWithBSD

Day one of #IPv6 only: Twitter's broken, but bsd.network isn't.

#WinWithBSD

+1 @phessler et al

I love you, #FreeBSD jails. You make logical separation of Internet-connected services incredibly intuitive.

#WinWithBSD

${DAYJOB} goal for next week: submit the Migrationator as a #FreeBSD port.

${DAYJOB} goal for this week: documentation, documentation, documentation.

https://github.com/g2-inc/migrationator

#privacy #WinWithBSD #google

Exporting your entire organization's email, user-by-user, from Google in a single Toot:

$ bin/migrate.zsh userlist -o users.csv
$ bin/migrate.zsh email -i users.csv -o /tank/degoogle

https://github.com/g2-inc/migrationator

#Google #Privacy #HardenedBSD #WinWithBSD