[BlueOnyx:24875] Re: FreeBSD 13 and pfSense drama (Off-Topic)

jobsbw-tmp at yahoo.co.uk jobsbw-tmp at yahoo.co.uk
Mon Mar 29 11:55:43 -05 2021 

 Just a short reply about pfSense
Years back I used m0n0wall and moved to pfSense as it was a fork of m0n0wlllater over the years i got a bad tast from how they acted and moved to OPNsense and never lopoked backOPNsense is also a fork of m0n0wall so for everybody who wants to move on have a look
Ta,Biton
    On Sunday, 28 March 2021, 05:55:27 BST, Michael Stauber <mstauber at blueonyx.it> wrote:  
 
 Hi all,

This is not BlueOnyx related at all, but if you want a giggle at the
expense of others, say no more:

https://arstechnica.com/gadgets/2021/03/buffer-overruns-license-violations-and-bad-code-freebsd-13s-close-call/

TL;DR: Netgate paid a convicted felon to port WireGuard into the FreeBSD
kernel to make it easier for them to use pfSense on FreeBSD for their
stuff. That guy eventually delivered and the code submission was merged
into the code tree for the upcoming release of FreeBSD 13.

Until the FreeBSD core maintainers found out what an unmitigated and
exploitable disaster that code was. "Bad" just doesn't cut it. It was a
hell of a lot worse.

So in a two week bender they rewrote it from scratch on their own. Which
gave Netgate the fits and put them into a rage-fit of accusations and
easily refutable denials. The reason for that unwise move was: They
already had merged the shitty pre-beta FreeBSD-code into pfSense 2.5.0
(released a month before FreeBSD 13 was to come out) and FreeBSD's fixes
now clearly showed what an exploitable buggy mess pfSense 2.5.0 actually
had become.

End result: FreeBSD and Netgate no longer seem to be "friends" and
WireGuard has been stripped from the upcoming FreeBSD 13 release entirely.

That went well. /facepalm

I actually liked pfSense a little. Now I'm wondering what other
"surprises" they have under the hood. :-/

-- 
With best regards

Michael Stauber
_______________________________________________
Blueonyx mailing list
Blueonyx at mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20210329/e3eb8719/attachment.html>

More information about the Blueonyx mailing list