Our OpenSSL package was vulnerable to the recently discovered Heartbleed bug as described in CVE-2014-0160.
An updated package 1.0.1g,REV=2014.04.08 for OpenSSL 1.0.1g has been pushed to unstable, bratislava and kiel.
Twice a year, OpenCSW maintainers and contributors get together to work on packages, share experiences and discuss the future direction of the project. In this year’s winter camp at the University of Zurich the following issues were addressed:
- Catalog cleanup
During the cleanup 441 packages were removed. This process will be repeated every six months.
- Introduce Buildbot for upstream projects
To give upstream better feedback on the Solaris compatibility for upstream projects we now provide continuous builds for interested projects. One of the first projects to benefit from it was PCRE which had issues on Solaris in version 8.34. The recently released packages for PCRE 8.35 were a result of giving upstream constant feedback on the development state.
- Presentation of new mirror infrastructure
In the future, people will be redirected to their closest mirror using only one URL. This will be based on MirrorBrain.
- Changes to the website
The Website has been updated to the latest WordPress release and the layout of announcements was adjusted. Additionally there were some thoughts about a new website.
The next camp will be in the summer/fall.
As a follow-up to our previous cleanings, we’ve taken another go at eliminating clutter from the catalog. By clutter we mean packages that are not updated for 4+ years, owned by inactive maintainers, and/or generally not useful any more.
Some of the packages were: dcraw, ddd, fluxbox_dtlogin, hylafax, jetty, ksh, minicom, nethack, pen (simple load balancer), rxvt, scala, tcptraceroute, thttpd, wiggle, wv2, and urxvt.
We also removed unused *_stub packages and most of the X11 packages from the times when OpenCSW tried to provide its own libX11. Overall, 441 stale packages have been removed.
Spring is here!
On the 10th of March 2014, we’ve promoted the kiel catalog to the stable release, and bratislava to the testing release.
There are no major changes in the catalog, but mainly incremental updates.
When you upgrade your systems to the new release, you can use
pkgutil --cleanup to get rid of empty and obsolete packages.
See the announcement on the users mailing list for more details.
Just a tiny little helper: sslscan allows the scanning of SSL and TLS services for accepted ciphers.
We’ve just flipped symlinks on the master mirror. Those subscribed to the ‘testing’ release will receive a massive package upgrade.
More details in the announcement email on the users mailing list.
If you’re only looking for instructions how to get started, you don’t need to watch the video.
If you’re curious about OpenCSW, want a bit more in-depth look and have an hour to spend watching a presentation, this is for you.
In the video, Dagobert Michelsen presents the project overview: what is OpenCSW, what does the project provide, and how it does it. Claudio Ramirez and William Bonnet joined the presentation to ask some additional questions and provide live comments.
Watch it here: OpenCSW project overview by Dagobert Michelsen
If you have any questions or comments, drop by our IRC channel, #opencsw on Freenode.