Show threadJdeBP6d ago

@oclsc

Arch has #OpenBSD #nc twice in the AUR. One package applies all of the Debian patches. One does not.

But they won't have noticed this difference, since they added these to the AUR around the time that Debian stopped patching the if test.

https://aur.archlinux.org/packages/openbsd-netcat-tls

https://aur.archlinux.org/packages/openbsd-netcat-git

#NetBSD, #FreeBSD, and #DragonFlyBSD all use the Jackson netcat.c with the if statement as in the original, so their ncs will all do this too.

https://gitweb.dragonflybsd.org/?p=dragonfly.git;a=blob;f=crypto/libressl/apps/nc/netcat.c;hb=HEAD#l718

@cks
#netcat

AUR (en) - openbsd-netcat-tls

Show threadJdeBPJun 17

@cks

A little background info:

The #OpenBSD blame for #nc. See line 705, tagged revision 1.21 and dated 2001-06-25.

https://cvsweb.openbsd.org/annotate/src/usr.bin/nc/netcat.c

Version 1.10. Note that the entire holler() fuction, called on line 1585, is conditional on o_verbose.

https://cvsweb.openbsd.org/annotate/src/usr.bin/nc/netcat.c?rev=1.10

The same code in the Stearns fork of 1.10, which Debian calls 'netcat-traditional'.

https://sources.debian.org/src/netcat/1.10-50.1/netcat.c#L1761

Non-OpenBSD GNU netcat works differently and isn't in Debian.

https://sourceforge.net/p/netcat/code/HEAD/tree/trunk/src/netcat.c#l609

#netcat
@oclsc

OpenBSD CVS Repository

Show threadJdeBPJun 17

@cks

nc wasn't changed. The relevant line of code has been

if (vflag || zflag) {

ever since Eric Jackson re-wrote #OpenBSD #nc in 2001. Martin Pieuchot changed the stream from standard output to standard error in 2009, but nc has been doing this for quarter of a century.

What actually happened was that #Debian people had been locally patching this line from 2012 to 2023.

https://salsa.debian.org/debian/netcat-openbsd/-/commit/2f5a8bea5f84847ee36a90e59f585b5cb3c07537

https://salsa.debian.org/debian/netcat-openbsd/-/commit/c9586231ff0e481ba51f96abd576cb506883a166

The Stearns fork of pre-Jackson #netcat respects -v here.

d/p/udp-scan-timeout.patch: Call connection_info() and udptest() call when zflag is set. (2f5a8bea) · Commits · Debian / netcat-openbsd · GitLab

This is the upstream behavior. We fix d/checks/10-vflag and d/checks/09-zflag to account for the fact that ‘-z’ now prints connection information by default.

GitLab
Tarnkappe.infoMay 26
📬 PS5-Szene dreht auf: Neue Exploits, Linux-Updates und Fortschritte beim Hypervisor-Hack
#Gaming #Jailbreaks #ELFArsenal #jordyidk #LuaLoader #Netcat #P2JB #PS5Szene #SonicLoader https://sc.tarnkappe.info/37eff0
PS5-Szene dreht auf: Neue Exploits, Linux-Updates und Fortschritte beim Hypervisor-Hack

Es hat sich viel getan. Die PS5-Szene meldet große Fortschritte bei Jailbreaks, Linux-Support und Hypervisor-Exploits bis Firmware 13.20.

TARNKAPPE.INFO
Show threadMark Shane HaydenMay 2
@puzzled #NetCat
Der CleverAdmin BlogMar 4

Sofort-Check: Wie Du die Verfügbarkeit eines Ports in der Bash überwachst

Ich habe letztens wieder etwas richtig Praktisches für meine tägliche Arbeit entdeckt, das ich Dir unbedingt zeigen möchte.

Kennst Du das? Du hast vielleicht gerade eine Konfiguration gemacht und startest einen lokalen Dienst oder ein Tool auf einem Server und willst wissen: Ist der Port...

https://www.cleveradmin.de/blog/2026/03/port-verfuegbarkeit-bash-check/
#Linux #bash #netcat #port #shell #berwachung

Ethan BlackJan 20

Fun: try communicating with #i3 / #SwayCompositor using #netcat and an #ASCII table!

$ man ascii
$ man sway-ipc # (for Sway)
$ nc -U "$I3SOCK" # "$SWAYSOCK" also works for Sway

Then enter:

i3-ipc^@^@^@^@^C^@^@^@

'^@' is a 0 byte; you can get it with Ctrl+@ (Ctrl+Shift+2) or sometimes Ctrl+Space. '^C' is a 3 byte; you'll need to escape it so that your terminal takes it literally rather than quitting `nc`; enter Ctrl+V then Ctrl+C.

Once you're done, press Ctrl+D once to send!

#hacking #hex

nickbeardedJan 1

Built a custom Buildroot distro for #Raspberry Pi 4 running:

Linux 6.12 PREEMPT_RT, Wi‑Fi, #NordVPN, #Tor + #Proxychains, #macchanger, #nftables, #nmap, #netcat, #watchdog.

A real‑time, stealth, weapon‑grade network appliance.

Minimal. Fast. Untraceable. Mine 👊🏻

#Linux #Buildroot #RaspberryPi #PREEMPTRT #FOSS #Privacy #Networking

kpcyrd 🏳️‍🌈🏴Dec 24, 2025

#netcat is both really popular with #Linux users, but also quite the train-wreck.

There's multiple mainstream implementations, they all have incompatible commandline interfaces, two of them have been unmaintained for 20 years and lack ipv6 support (netcat-traditional and gnu-netcat).

Debian and Arch Linux are shipping openbsd-netcat, but there's no canonical upstream, Debian takes the code out of OpenBSD's src.tar.gz and patched it to be portable to Linux (essentially to the point of a fork).

KrebsOnSecurity RSSNov 24, 2025

Is Your Android TV Streaming Box Part of a Botnet?

https://krebsonsecurity.com/2025/11/is-your-android-tv-streaming-box-part-of-a-botnet/

#SuperMediaTechnologyCompanyLtd. #ElectronicFrontierFoundation #FederalBureauofInvestigation #InternetofThings(IoT) #HalfSpaceLabsLimited #BadBox2.0Enterprise #GrassOpCo(BVI)Ltd #LowerTribecaCorp. #ALittleSunshine #ARPpoisoning #WebFraud2.0 #RileyKilmer #WyndNetwork #SuperCaja #Synthient #Superbox #BestBuy #Tcpdump #Walmart #Amazon #Censys #IPidea #Netcat

Is Your Android TV Streaming Box Part of a Botnet? – Krebs on Security