Hi zusammen,
Ich habe gerade mal das batman-adv-dkms und batctl Paket geupgradet:
batman-adv-dkms von v2017.3 auf v2018.1:
Changelog:
support latest kernels (3.2 - 4.17)
coding style cleanups and refactoring
documentation cleanup
mark licenses clearer, change UAPI netlink header from ISC to MIT
add DAT cache and multicast flags netlink support
avoid redundant multicast TT entries
bugs squashed:
avoid spurious warnings from bat_v neigh_cmp implementation
fix check of gateway availability in B.A.T.M.A.N. V
fix locking for bidirectional TQ check counters
remove leak of stack bits in fragmentation header priority
fix packet checksum handling in receive path
fix handling of large number of interfaces
fix netlink dumping of gateways and BLA claims+backbones
update data pointers after skb_cow()
fix header size check in batadv_dbg_arp()
fix skbuff rcsum on packet reroute
fix multicast-via-unicast transmission with AP isolation
fix packet loss for broadcasted DHCP packets to a server
fix multicast packet loss with a single WANT_ALL_IPV4/6 flag
batctl von v2017.3 auf v2018.1:
Changelog:
synchronization of batman-adv netlink and packet headers
coding style cleanups and refactoring
documentation cleanup
mark licenses clearer, change batman-adv UAPI header from ISC to MIT
add DAT cache and multicast flags netlink support
disable translation support for non-unicast mac addresses
bugs squashed:
improve error handling for libnl related errors
add checks for various allocation errors
Schöne grüße
Tarek
FYI
Via: https://www.mail-archive.com/source-changes@openbsd.org/msg99141.html
CVSROOT: /cvs
Module name: src
Changes by: kette...(a)cvs.openbsd.org 2018/06/19 13:29:52
Modified files:
sys/arch/amd64/amd64: cpu.c
sys/arch/amd64/include: cpu.h
sys/kern : kern_sched.c kern_sysctl.c
sys/sys : sched.h sysctl.h
Log message:
SMT (Simultanious Multi Threading) implementations typically share
TLBs and L1 caches between threads. This can make cache timing
attacks a lot easier and we strongly suspect that this will make
several spectre-class bugs exploitable. Especially on Intel's SMT
implementation which is better known as Hypter-threading. We really
should not run different security domains on different processor
threads of the same core. Unfortunately changing our scheduler to
take this into account is far from trivial. Since many modern
machines no longer provide the ability to disable Hyper-threading in
the BIOS setup, provide a way to disable the use of additional
processor threads in our scheduler. And since we suspect there are
serious risks, we disable them by default. This can be controlled
through a new hw.smt sysctl. For now this only works on Intel CPUs
when running OpenBSD/amd64. But we're planning to extend this feature
to CPUs from other vendors and other hardware architectures.
Note that SMT doesn't necessarily have a posive effect on performance;
it highly depends on the workload. In all likelyhood it will actually
slow down most workloads if you have a CPU with more than two cores.
ok deraadt@
Hello,
Your certificate (or certificates) for the names listed below will expire in
20 days (on 10 Jul 18 04:54 +0000). Please make sure to renew
your certificate before then, or visitors to your website will encounter errors.
git.ffnw.de
git.nordwest.freifunk.net
For any questions or support, please visit https://community.letsencrypt.org/.
Unfortunately, we can't provide support by email.
For details about when we send these emails, please visit
https://letsencrypt.org/docs/expiration-emails/. In particular, note
that this reminder email is still sent if you've obtained a slightly
different certificate by adding or removing names. If you've replaced
this certificate with a newer one that covers more or fewer names than
the list above, you may be able to ignore this message.
If you want to stop receiving all email from this address, click
http://mandrillapp.com/track/unsub.php?u=30850198&id=fb8e2d2e161c40fc8ef439…
(Warning: this is a one-click action that cannot be undone)
Regards,
The Let's Encrypt Team
As list administrator, your authorization is requested for the
following mailing list posting:
List: admin(a)lists.ffnw.de
From: tarek(a)ring0.de
Subject: confirm 7354f3156d10eaa287981690a90f98237e4fb936
The message is being held because:
Message contains administrivia
At your convenience, visit your dashboard to approve or deny the
request.
by admin-confirm+7354f3156d10eaa287981690a90f98237e4fb936@lists.ffnw.de
Email Address Registration Confirmation
Hello, this is the GNU Mailman server at lists.ffnw.de.
We have received a registration request for the email address
admin(a)lists.ffnw.de
Before you can start using GNU Mailman at this site, you must first confirm
that this is your email address. You can do this by replying to this message,
keeping the Subject header intact.
If you do not wish to register this email address, simply disregard this
message. If you think you are being maliciously subscribed to the list, or
have any other questions, you may contact
admin-owner(a)lists.ffnw.de
_______ _______ _______
(_______)(_______)(_______) _
_____ _____ _____ _____ ____ _| |_ ___ ____
| ___) | ___) | ___)| ___ | / ___)(_ _)/ _ \ / ___)
| |_____ | | | | | ____|( (___ | |_| |_| || |
|_______)|_| |_| |_____) \____) \__)\___/ |_|
EFFector Vol. 31, No. 9 Friday, June 8, 2018 editor(a)eff.org
A Publication of the Electronic Frontier Foundation
ISSN 1062-9424
effector: n, Computer Sci. A device for producing a
desired change.
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
In our 735th issue:
* Who Has Your Back? Censorship Edition 2018
Given policymakers' and the public's intense focus on cracking down on speech
they consider undesirable, this year's Who Has Your Back report features
substantially redesigned categories and criteria. Since the Electronic
Frontier Foundation began publishing Who Has Your Back in 2011, it has
generally focused on the practices of major consumer-facing Internet
companies regarding government requests to produce user data. This year, we
shift our focus to companies' responses to government requests to take down
user content and suspend user accounts.
For our 2018 report, we assess companies' policies against five all-new
criteria:
* Transparency in reporting government takedown requests based on legal
requests
* Transparency in reporting government takedown requests based on requests
alleging platform policy violations
* Providing meaningful notice to users of every content takedown and account
suspension
* Providing users with an appeals process to dispute takedowns and
suspensions
* Limiting the geographic scope of takedowns when possible
Three platforms—the Apple App Store, Google Play Store, and
YouTube—earned stars in all five of these categories. And three
more—Medium, Reddit, and WordPress.com—earned stars in all but the notice
category, which proved the most challenging category for the companies we
assessed. Some companies fell notably short overall; Facebook's and
Instagram's policies in particular lagged behind comparable tech companies
and social networks. However, it's clear that public pressure is resulting in
real change in corporate policy and practice. We look forward to more
long-term improvements across the industry in future years as companies take
steps to be more accountable to their users and those users' right to freedom
of expression.
Read more: https://www.eff.org/who-has-your-back-2018
* EFF and 23 Civil Liberties Organizations Demand Transparency on NSA Domestic Phone Record Surveillance
Two dozen civil liberties organizations, including EFF and the ACLU, have
urged Director of National Intelligence Daniel Coats to report—as required
by law—statistics that could help clear up just how many individuals are
burdened by broad NSA surveillance of domestic telephone records. These
records show who is calling whom and when, but not the content of the calls.
These numbers are crucial to understanding how the NSA conducts this highly
sensitive surveillance under Section 215 of the Patriot Act, as amended by
the USA Freedom Act of 2015. Under the earlier version of this surveillance
program, the NSA collected details of nearly every single American's phone
calls. With the NSA’s domestic phone record surveillance powers scheduled
to expire in 2019, Congress and the public deserve to know the truth before
any legislative attempts to reauthorize the program.
Despite this, the Office of the Director of National Intelligence (ODNI) has
failed to report these statistics in its past three annual transparency
reports.
The civil liberties groups also signed a letter to Reps. Bob Goodlatte (R-VA)
and Jerry Nadler (D-NY), the Chair and Ranking Member of the House Judiciary
Committee, warning about the NSA’s continued failure to comply with the law
mandating disclosure of this data.
Read more: https://www.eff.org/deeplinks/2018/05/eff-and-x-civil-liberties-organizatio…
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
EFF Updates
* Email Privacy Act Comes Back, Hopefully to Stay
The House of Representatives passed a bill this week called the National
Defense Authorization Act (NDAA), which authorizes the nation’s military
and defense programs. Earlier in the week, scores of Representatives offered
amendments to this must-pass bill in hopes of ensuring that their ideas get a
chance to become law.
Rep. Kevin Yoder (R-KS) used this opportunity to include as an amendment the
Email Privacy Act, a piece of legislation long-favored by EFF. The Email
Privacy Act would codify the rule announced by the Sixth Circuit—and now
followed by providers nationwide—that requires government agents to first
obtain a probable cause warrant when seeking the content of communications
stored by companies like Google, Facebook, Slack, Dropbox, and Microsoft.
On Thursday night, the House approved the NDAA—including the amendment with
the Email Privacy Act—in a 351-66 vote. We applaud the House’s inclusion
of this important statutory language.
https://www.eff.org/deeplinks/2018/05/email-privacy-act-comes-back-hopefull…
* What to Watch for in an Internet Without Net Neutrality (And How To Stop It)
On Monday, June 11, the FCC's rollback of net neutrality rules went into
effect, but don't expect the Internet to change overnight.
You can look forward to an Internet that's slower when you're trying to visit
less popular sites, and where online services get a bit more expensive
because they have to pay protection money to the ISPs. It will be harder for
new companies to come in and compete with the ones that paid for fast lanes,
and the nonprofit information resources on the web will be harder to use.
It's not going to be a flashy apocalypse; it will be a slow decline into the
Internet of ISP gatekeeping, and you probably won't even know what neat
services and helpful resources you're missing. And one day, when the ISPs are
secure in their victory, they'll test the waters and see if you'll pay extra
to access anything that's not Facebook, or Comcast's video platform, or
AT&T's paying partners.
https://www.eff.org/deeplinks/2018/06/bleak-future-internet-without-net-neu…
* It’s Time for Payment Processors Like Stripe and Paypal to Start Publishing Transparency Reports
Modern payment processors are making hard choices every day about how and
when they’ll stand up for users. Whether they comply with or reject a
government request for user data and whether they shut down an account or
leave it up can have enormous ramifications for what types of speech can
thrive online. These choices shouldn’t be made in a bubble, shielded from
public oversight.
Payment processors like Stripe, Paypal, Bitpay, and Coinbase are the
intermediaries that allow you to support your favorite websites, send
donations, and make purchases online. They’re often privy to details of
your financial life, which can be deeply revealing. Given how sensitive this
information is, you might assume that law enforcement agents must show
probable cause to a judge and receive a search warrant before accessing
financial records. But you’d be wrong. Financial data is frequently
obtained through a less stringent process, such as a subpoena, a 314 (a)
request, or a National Security Letter, none of which require review from a
judge before being sent to the financial service provider.
The first, simplest, most modest and reasonable step to shine a light on
government action is a transparency report on the government requests for
user data and account shutdowns, which has become standard practice across
other industries where companies hold sensitive data.
https://www.eff.org/deeplinks/2018/05/its-time-payment-processors-stripe-an…
* The EU's Copyright Proposal is Extremely Bad News for Everyone, Even (Especially!) Wikipedia
The pending update to the EU Copyright Directive is coming up for a committee
vote on June 20 or 21 and a parliamentary vote either in early July or late
September. While the directive fixes some longstanding problems with EU
rules, it creates much, much larger ones: problems so big that they threaten
to wreck the Internet itself.
Under Article 13 of the proposal, sites that allow users to post text,
sounds, code, still or moving images, or other copyrighted works for public
consumption will have to filter all their users' submissions against a
database of copyrighted works. Sites will have to pay to license the
technology to match submissions to the database, and to identify near matches
as well as exact ones. Sites will be required to have a process to allow
rightsholders to update this list with more copyrighted works.
Even under the best of circumstances, this presents huge problems. Algorithms
that do content-matching are frankly terrible at it. The Made-in-the-USA
version of this is YouTube's Content ID system, which improperly flags
legitimate works all the time, but still gets flack from entertainment
companies for not doing more.
https://www.eff.org/deeplinks/2018/06/eus-copyright-proposal-extremely-bad-…
* A Constitutional Conundrum That’s Not Going Away—Unequal Access to Social Media Posts
Among the many privacy challenges posed by social media, one has flown
largely under the radar: balancing defendants’ due process rights to access
exculpatory information against the crucial privacy protections of the Stored
Communications Act (SCA). Here’s the problem: prosecutors have broad powers
to demand access to stored communications as necessary to pursue their case,
but defendants do not. That means the scales are tipped in favor of
prosecutors, which seem unfair. But a more balanced approach would likely
require eroding privacy protections – protections that are more necessary
than ever.
There does not seem to be an easy answer to this constitutional conundrum.
While the imbalance of power between the prosecution and the defense in
access to available electronic evidence is unfair, we should not seek to
correct it by sacrificing hard-won privacy protections. We need to get this
issue right, and that starts with giving it more visibility and debating
solutions.
https://www.eff.org/deeplinks/2018/05/ca-supreme-court-leaves-scales-tipped…
* Author Trademarks the Word 'Cocky,' Earns the Ire of Romance Writers Everywhere
Bogus copyright and trademark complaints have threatened all kinds of
creative expression on the Internet. EFF's Hall Of Shame collects the worst
of the worst. New to the Hall Of Shame is the tale of a romance author who
got a trademark in the word "cocky" and proceeded to send letters to other
writers with "cocky" in the titles of their books. Unsurprisingly, this
attack on a popular double entendre of the romance set did not go over well
at all.
https://www.eff.org/takedowns/author-trademarks-cocky-earns-ire-romance-wri…
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
Announcements
* Cryptoparty Hosted by Cypurr
Being able to communicate safely and privately with friends and family is
part of the foundation of all our lives, so it's also a key skill for using
the Internet. This month's cryptoparty will go over easy ways to talk, chat,
and email securely online. It's always good to review the tools and habits
that our digital security depend on, especially with the recent Signal
Desktop flaws and the e-Fail email exploits.
https://www.eff.org/event/cryptoparty-hosted-cypurr-5
* Discussion Hosted by TA3M Portland
This month, learn what Senator Ron Wyden and his team are doing to protect
your privacy! Grace Stratton from Sen. Wyden's local office will be at the
meeting, and Chris Soghoian from the D.C. office will join us remotely to
discuss surveillance, cybersecurity, and consumer privacy.
https://www.eff.org/event/discussion-hosted-ta3m-portland-6
* Cypurr Social
Join The CyPurr Collective for another SUPER FUN SOCIAL. Hang out, meet other
tech-minded folks, ask questions on cybersecurity issues, and generally snack
out and enjoy the feature presentation!
This month we'll be watching Wall-E, with an Adventure Time short to start
off the night!
https://www.eff.org/event/cypurr-social
* hack.summit(“blockchain”)
EFF has been selected as one of the exclusive non-profit partners of
hack.summit() which made history for running the largest virtual developer
conference of all time. As a non-profit partner, we will be receiving funds
generated by ticket sales & sponsorships from the event. This year’s event,
hack.summit(“blockchain”), focuses on spreading and democratizing
knowledge about blockchain and cryptocurrencies to attendees around the
world.
https://www.eff.org/event/hacksummitblockchain
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
Job Openings
* Staff Technologist – JavaScript Developer
EFF is seeking a full-time Staff Technologist to work with our Browser
Extensions team as the lead developer for [1]HTTPS Everywhere [2].
[1] https://www.eff.org/https-everywhere
[2] https://www.eff.org/https-everywherehttps://www.eff.org/opportunities/jobs/staff-technologist-javascript-develo…
* Civil Liberties Staff Attorney
EFF is looking to hire an experienced litigator with an unshakeable sense of
justice and Fourth Amendment expertise to join our civil liberties team.
https://www.eff.org/opportunities/jobs/civil-liberties-staff-attorney
* Grant Writer - Temporary
EFF is looking for a temporary Grant Writer to support EFF's fundraising
operations during a team member’s leave of absence. Do you love Internet
freedom? Do you have experience in persuasive writing and grant management?
Consider joining us!
https://www.eff.org/opportunities/jobs/grant-writer-temporary
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
MiniLinks
- UAE Jails Rights Activist Ahmed Mansoor Over Social Media Posts
Ahmed Mansoor, the blogger and human rights activist, has been sentenced in
the UAE to 10 years imprisonment, simply for writing criticism of the
government on social media. (DW)
http://www.dw.com/en/uae-jails-rights-activist-ahmed-mansoor-over-social-me…
- Google Plans Not to Renew Its Contract for Project Maven, a Controversial Pentagon Drone AI Imaging Program
In a big win for ethical AI principles, Google will back away from military
AI contracting. (Gizmodo)
https://gizmodo.com/google-plans-not-to-renew-its-contract-for-project-mave…
- Digital License Plates Roll Out In California
With digital license plate location data, "it's still not clear where all
this information is going, how long it's stored or who has access to it."
(NPR)
https://www.npr.org/sections/thetwo-way/2018/06/01/616043976/digital-licens…
- Edward Snowden: 'The People Are Still Powerless, But Now They're Aware'
In 2013, many thought encryption was just "for the targeted and the
paranoid," says EFF's Jillian York. Then Edward Snowden came on the scene.
(The Guardian)
https://www.theguardian.com/us-news/2018/jun/04/edward-snowden-people-still…
- Facebook Gave Device Makers Deep Access to Data on Users and Friends
Right now, it's unclear how much Facebook user data was shared through deals
with hardware manufacturers—but it is clear that Facebook has a consent
problem. (The New York Times)
https://www.nytimes.com/interactive/2018/06/03/technology/facebook-device-p…
- The NSA Just Released 136 Historical Propaganda Posters
The NSA has released 136 Mad Men-era posters that reminded employees of the
importance of security—and the dangers of leaking. Apparently, some things
never go out of style. (Motherboard)
https://motherboard.vice.com/en_us/article/43548d/nsa-historical-propaganda…
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
-------- SUPPORTED BY DONORS
-------------------------------------------------
Our members make it possible for EFF to bring legal and technological
expertise into crucial battles about online rights. Whether defending free
speech online or challenging unconstitutional surveillance, your
participation makes a difference. Every donation gives technology users who
value freedom online a stronger voice and more formidable advocate.
If you aren't already, please consider becoming an EFF member today.
https://supporters.eff.org/join/effector
: . : . : . : . : . : . : . : . : . : . : . : . : . : . :
* Administrivia
Editor:
Katharine Trendacosta, Policy Analyst editor(a)eff.org
EFFector is published by:
The Electronic Frontier Foundation
https://www.eff.org/
Membership & donation queries:
membership(a)eff.org
General EFF, legal, policy, or online resources queries:
info(a)eff.org
Reproduction of this publication in electronic media is
encouraged. MiniLinks do not necessarily represent
the views of EFF.
Back issues of EFFector are available via the Web at:
https://www.eff.org/effector/
Unsubscribe from future mailings or change your email preferences: https://supporters.eff.org/update-your-preferences?cid1=2061725&cs=9e9872fb…
Opt out of all EFF email: https://supporters.eff.org/civicrm/mailing/optout?reset=1&jid=60523&qid=854…
815 Eddy Street
San Francisco, CA 94109-7701
United States
As list administrator, your authorization is requested for the
following mailing list posting:
List: notifications(a)lists.ffnw.de
From: info(a)nordwest.freifunk.net
Subject: RE: Fehler melden [Ticket#981848]
The message is being held because:
The message is not from a list member
At your convenience, visit your dashboard to approve or deny the
request.
Hallo,
ist schon irgendwo am Horizont eine Freifunkfirmwareunterstützung der CPE210 v2.0 zu sehen?
https://forum.freifunk.net/t/tp-link-cpe210-v2-gluon-support/15309
Mit freundlichen Grüßen
-------------------------------------------------------------------
Thomas Engelmeyer Telefon: 05403 – 7269310
Am Riesweg 2 Telefax: 05403 – 7269311
49186 Bad Iburg Mobil: 0174 – 999 42 32
Direkte Kommunikation via Telegram möglich.
-------------------------------------------------------------------
Mitglied im Freifunkverein Nordwest.Freifunk.net
( <http://osnabrueck.freifunk.net/> http://osnabrueck.freifunk.net)
E-Mail: <mailto:thomas.engelmeyer@ffnw.de> thomas.engelmeyer(a)ffnw.de
Hello,
Your certificate (or certificates) for the names listed below will expire in
1 days (on 10 Jun 18 14:04 +0000). Please make sure to renew
your certificate before then, or visitors to your website will encounter errors.
support.ffnw.de
For any questions or support, please visit https://community.letsencrypt.org/.
Unfortunately, we can't provide support by email.
For details about when we send these emails, please visit
https://letsencrypt.org/docs/expiration-emails/. In particular, note
that this reminder email is still sent if you've obtained a slightly
different certificate by adding or removing names. If you've replaced
this certificate with a newer one that covers more or fewer names than
the list above, you may be able to ignore this message.
If you want to stop receiving all email from this address, click
http://mandrillapp.com/track/unsub.php?u=30850198&id=7caed65a15134f27a7182c…
(Warning: this is a one-click action that cannot be undone)
Regards,
The Let's Encrypt Team