I submitted a Pull Request to update MacPorts' LibreSSL to 4.3.1 here:

https://github.com/macports/macports-ports/pull/32313

GitHub Continuous Integration checks are queued. Hopefully they will complete without issues?

Regardless, it's up to someone else with commit access to merge it!

I should do something similar with libressl-devel next.

#LibreSSL #MacPorts #TLS #TransportLayerSecurity #SSL #SecureSocketsLayer #Encryption #OpenSource

I've submitted a Pull Request to update MacPorts' rpki-client to 9.8 here:

https://github.com/macports/macports-ports/pull/32251

GitHub Continuous Integration checks passed OK!

It's up to someone else to merge it.

I couldn't help but notice the most recent OpenBGPD release announcement mentioned something about a -portable branch? Admittedly, it has been a very long time since I looked at building OpenBGPD on macOS, but maybe it is worth looking at again? I still think it is probably ill advised to use macOS for something as critical as routing insomuch as it sleeps, with abandon, unless /usr/bin/caffeinate is invoked.

#RPKI #MacPorts #rpkiーclient #RPKIclient #OpenSource #BGP #Routing

Meanwhile: tomorrow is "Tax Day" in the USA?

I submitted the tax preparation packet to my CPA last month. Sent him an email, he replied. Got my bankers to forward my CPA's office some stuff. Sent an email last week, no reply.

I mean, this is par for the course tbh, my CPA tends to automatically file extensions and often we end up filing way after the April 15th deadline, so I am guessing that is what is going on again this year?

Probably my fault anyway for mailing that the day before his office had marked it as due and postal system delays, but whatever, even when I have been more proactive and ahead of the curve, these things tend to drag on much longer than I ever think necessary.

sigh

Years ago, I remember speaking with a friend's husband who I guess uses a tax attorney (geeze, it's bad enough that I was audited and started relying on a CPA, I don't even want to think about what a tax attorney costs) and he claimed that he basically files taxes at the first of the year.

My employers? Typically don't even provide W2s or whatever, until late January. I have no idea how that guy's tax attorney could file so early. Sounded extremely sus.

But I guess if you have the money to bribe^w pay off the right people? Sus things are just "normal"?

That Claude $20,000 in LLM time burnt to find a bug in OpenBSD?

Kinda reminds me of that CCC talk on OpenBSD by that person who was like, super critical of OpenBSD, one of the security features (I don't remember which one and I really don't feel like re-watching that video on this slow WiFi just to be more precise with citations) he sort of hand waved away with something along the lines of: "maybe this is useful for some CTF competition, but not in the real world."

I mean, I dunno much about CTF competitions everywhere. At ToorCon 8, I sorta stood over jose's shoulder while he helped their CTF team get something to compile and for some reason, I ended up on that year's t-shirt, twice, as a result! ;) I also know some of the old DefCon CTF folks. obecian, of the Ghetto Hackers? Was an OpenBSD developer. Ghetto Hackers, having won CTFs in the past, I guess got to organize future CTFs or something?

OpenBSD was banned from CTFs IIRC, because it set the bar too high. In a Capture The Flag competition, you need hosts which are actually able to be exploited.

So, no, I don't think OpenBSD developers make security features, for CTF competitions, because at least, the last time I paid any attention to such things? OpenBSD was prohibited from being used in such things. That would be a lot of wasted development effort, for something from which no one would benefit.

As an aside, one of the two times (the first time I think? 2005?) that I ever ended up attending DefCon, I learned from Caezar how obecian got ingratiated into their group. Pretty hilarious story, but I would be retelling it with about 20 years in between when I heard it and now, and doubtlessly would get some details incorrect. Not the thing to write about online so much as share in person anyway. ^_^

As an aside, didja see the Call For Papers for ToorCamp 2026?

https://talks.toorcon.net/toorcamp-2026/cfp

I dunno if I will have my life together enough to attend (it's late June, seems, dubious) but having attended ToorCamp in 2009 and having heard nothing but good things about it improving over the ensuring years? I am guessing it will be a good time!

#CTF #OpenBSD #ToorCamp #GhettoHackers

So that job to which I applied last week?

Yesterday I had an in person interview.

Before 19:00 local time? There was a voicemail claiming they want to move forward with the security background check part of the hiring process, which is a good sign?

Anyway, too soon to count any of those eggs as hatched, but perhaps, soonish, within the next several weeks to a month or so: maybe I will have TWO jobs!

And, presumably, still be below the poverty line and homeless and thousands in debt.

But y'know? Every little cent probably helps?

Tomorrow: I am checking out of the hostel which has been, cheap, but as with anything with shared bunk beds, kind of unfortunately reminiscent of being incarcerated. I'll then be renting a car, stopping by my mailbox for the first time in like a month, getting a haircut for the first time in maybe two months and, well other things too, before work on Thursday.

There's been a lot of other stuff going on personally. Not a whole lot exciting (other than having now taken 3 weeks of Introduction to Irish with 4th looming on Saturday) but I'll be driving to SoCal to see Suicide Commando on Saturday for what will, supposedly, be his last US tour! I'm definitely looking forward to that (the drive down and back before work Sunday morning? Less so, but music is at least something worthwhile in my existence.)