Verified Commit 2a51fd0e authored by Lorenzo Faletra's avatar Lorenzo Faletra

Merge remote-tracking branch 'origin/dev'

parents 5e66b541 c199c9d6
_site
.sass-cache
.jekyll-metadata
_posts/WIP-2019-04-26-parrot-4-6-release-notes.md
## Developer Certificate of Origin + License
By contributing to the Parrot Project, You accept and agree to the following terms and
conditions for your present and future Contributions submitted to the Parrot Project.
Except for the license granted herein to the Parrot Project and recipients of software
distributed by the Parrot Project, You reserve all right, title, and interest in and to
Your Contributions. All Contributions are subject to the following DCO + License
terms.
[DCO + Licenses](LICENSES.md)
_This notice should stay as the first item in the CONTRIBUTING.md file._
## Contributing
First off thank you for your interest and help!
**Security Issues**
We take security very seriously, if you find a security vulnerability, do NOT open an issue. <br>
Please email `security at parrotsec dot org` or send Palinuro a PM on Telegram.
You can help improve our blog by submitting merge requests (pull requests in github) to this repository.
For more information about how to contribute please see our [Technical Guidelines for Contributing](https://nest.parrotsec.org/parrot-organization/community-team/community/blob/master/Tech-GL-4C.md).
We want to create a welcome environment for everyone who is interested in contributing. Please see our [Code of Conduct](https://nest.parrotsec.org/parrot-organization/community-team/community/blob/master/code-of-conduct.md) to learn more about our committment to an open environment.
_Please do not use the issue tracker for support questions, please post on the [forum](https://community.parrotsec.org) or on Telegram._
## Maintainers, response time and security issues.
**Primary:** Palinuro
**Alternate:** Pino
You should get a response from a maintainer within **five days** for a merge request and **seven days** for everything else.
If you haven't heard anything in that timeframe please ping the thread with the names of the maintainers.
After feedback is given we expect a response within two weeks if no response is given we may close the merge request or issue.
_Commit access is given on a case by case basis and is at the discretion of the Core Dev Team._
### How to suggest a feature or enhancement
Please make a post in the forum under development category. Please add why it is needed, the scope of the feature and any research you have.
Your topic will be read and checked if the request is possible, if not you will be notified why this isn't possible.
If it is possible you will be asked to open an issue here.
## Developer Certificate of Origin + Licenses
**By contributing to the Parrot Project, you accept and agree to the following terms and conditions for your present and future Contributions submitted to the Parrot Project.**
Except for the license granted herein to Parrot Project and recipients of software distributed by Parrot Project, You reserve all right, title, and interest in and to your Contributions.
## Developer Certificate of Origin
```text
Version 1.1
Copyright (C) 2004, 2006 The Linux Foundation and its contributors.
1 Letterman Drive
Suite D4700
San Francisco, CA, 94129
Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed.
Developer's Certificate of Origin 1.1
By making a contribution to this project, I certify that:
(a) The contribution was created in whole or in part by me and I have the right to submit it under the open source license indicated in the file; or
(b) The contribution is based upon previous work that, to the best of my knowledge, is covered under an appropriate open source license and I have the right under that license to submit that work with modifications, whether created in whole or in part by me, under the same open source license (unless I am permitted to submit under a different license), as indicated in the file; or
(c) The contribution was provided directly to me by some other person who certified (a), (b) or (c) and I have not modified it.
(d) I understand and agree that this project and the contribution are public and that a record of the contribution (including all personal information I submit with it, including my sign-off) is maintained indefinitely and may be redistributed consistent with this project or the open source license(s) involved.
```
**All Contributions to Parrot Project repositories are licensed under the following licenses:**
## Software and code
1) [GNU GPL v3](https://www.gnu.org/licenses/gpl-3.0.en.html)
Copyright 2007-Present time, Lorenzo "Palinuro" Faletra
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
## Everything else
2) [CC BY-SA 4.0](https://creativecommons.org/licenses/by-sa/4.0/)
Copyright 2007-Present time, Lorenzo "Palinuro" Faletra
All Documentation, artwork and any media not covered by the license above, is licensed under Creative Commons: CC BY-SA 4.0.
**Note:** Palinuro is the current copyright and license holder for the Parrot Project as a temporary measure. All licenses and copyrights will eventually be transfered to a non-profit we are setting up to enable better transparency (we hope to have more details in the fall of 2019).
# Parrot Project Blog
This is the offical blog and news source of the Parrot Project.
## Getting Started
This blog was made with Jekyll as static HTML site.
## Built With
* [Jekyll](https://jekyllrb.com/) - Jekyll Static Site Generator.
**Documentation**
* [Open Source Guide](https://opensource.guide) Content based on [github.com/github/opensource.guide](github.com/github/opensource.guide) used under the CC-BY-4.0 license.
## Contributing
Please read [CONTRIBUTING](CONTRIBUTING.md) for details on our code of conduct, and the process for submitting merge requests (pull requests) or making contributions.
## Authors
| Nickname | Name | Email |
| ------------- | ------------------ | --------------------------------- |
| Palinuro | Lorenzo Faletra | palinuro at parrotsec dot org |
See also the list of [contributors](contributors.md) who participated in this project.
## Licenses
This project is licensed under the GPLv3 and CC-BY-SA v4.0 Licenses - see the [LICENSES.md](LICENSES.md) file for details.
## Acknowledgments
* Big thank you to [PurpleBooth](https://github.com/PurpleBooth) for her [README template](https://gist.github.com/PurpleBooth/109311bb0361f32d87a2).
* Thanks to [Github](https://github.com/github/opensource.guide) and the [contributors](https://github.com/github/opensource.guide/graphs/contributors) for their [Open Source Guide](https://opensource.guide).
<nav class="navbar navbar-default navbar-fixed-bottom">
<div class="container footer-content">
Parrot Project Blog
Parrot Linux Team Blog
</div>
</nav>
......@@ -12,98 +12,130 @@ categories:
# Parrot 4.6 development notes
We are proud to announce the release of Parrot 4.6, an important Parrot project update that came out after 3 months of heavy development.
We are proud to announce the release of Parrot 4.6, an important Parrot OS update that came out after 3 months of heavy development.
---
# Parrot Security KDE Edition
After many user requests, we finally developed a Security edition featuring the KDE Plasma desktop environment.
When we first added KDE, it was an experiment. We love Mate but we'd heard great things
Parrot now offers both MATE and KDE images for its Home and Security editions.
about KDE and decided we could try and support two desktop environments. Because of the
work required to change everything from Mate to KDE. We started with KDE Home. The
feedback was immediate, you guys loved it. The recurring request since has been "how do I
add the tools". We heard you and it is finally here! A Security edition featuring the KDE
Plasma desktop environment.
We now offer both MATE and KDE images for the Home and Security editions.
![parrot security kde](../img/parrot-4.6-kde-security.jpg)
---
## Appearence updates
# System Changes
## Appearance
Our design team developed a new graphic concept for Parrot 4.6,
Our design [team](https://www.parrotsec.org/docs/team/#design-team) developed a new, ultra, awesome visual experience for Parrot 4.6,
which now includes a brand new boot splash animation and a new desktop background.
feast your eyes on a new boot-splash animation and desktop background!
desktop-base and parrot-wallpapers were updated to reflect such changes and include the new Parrot appearence.
The desktop-base and parrot-wallpapers also received some love and are updated to reflect
Themes and Icons are still the old ones.
such changes including the new Parrot appearence.
**Note:**The themes and icons are still the same.
---
# APT now enforces https
## APT now enforces https
We have modified our APT implementation to support https-to-http downgrades.
This allowed us to configure our repository as https by default. For visual reference
We modified our APT implementation to support https-to-http downgrades.
This allowed us to configure our repository as https by default.
Parrot 4.6 is now configured to serve signed index files via https by default,
and the mirror redirector is configured to redirect traffic to its https mirrors when available.
In case a https mirror is not available, the packages are downloaded by fallback http mirrors, but APT is made to verify the signatures.
and the mirror redirector is configured to redirect traffic to https mirrors when available.
In case an https mirror is not available, the packages are downloaded by fallback http mirrors, but APT will still verify the signatures.
In other debian-based systems and in previous Parrot versions, mirrors use http by default, and https is just an exception.
Http downloads don't represent a security risk because gpg signatures are more effective than ssl downloads in certifying repository integrity, as decribed on [this website - https://whydoesaptnotusehttps.com/](https://whydoesaptnotusehttps.com/), but we are working to make the downloads more secure, and make harder for bad providers to track user activities (i.e. knowing if a user is installing a specific software).
In other debian-based systems and previous Parrot OS versions, mirrors used http by default, and https is just an exception.
Http downloads don't represent a security risk because gpg signatures are more effective
---
than ssl downloads in certifying repository integrity, as described on [this website - https://whydoesaptnotusehttps.com/](https://whydoesaptnotusehttps.com/).
Although you can never eliminate risk of bad actors, we hope to increase the cost for
providers attempting to intercept or track user activities (i.e. knowing if a
# Anonsurf adds OpenNIC support
Anonsurf now integrates a new option to reconfigure the system DNS servers to use the OpenNIC DNS resolvers.
user is installing specific software).
OpenNIC is a community-driven dns resolver provider that respects
---
## Anonsurf has OpenNIC support
Anonsurf now integrates a new option to change from the system DNS servers to OpenNIC DNS resolvers.
[OpenNIC](https://www.opennic.org) is a community-driven dns resolver provider that respects
user freedom and allows domain resolution of some special top level domains.
![OpenNIC features](../img/parrot-4.6-opennic.png)
---
# Minor updates
## better snap package support
now shown in the applications menu by default
## Better snap support
Now when you install from snap it will show up in the applications menu by default
## updated apparmor and firejail profiles
Sandboxed applications are now more stable and reliable than before, and we are pushing forward
## AppArmor and Firejail profiles have been updated
We are constantly trying to rebuild the sandbox :) We love firejail and AppArmor and we
our custom profiles development and testing.
hope to achieve a state of near hassle-free setup and use. Sandboxed applications in
## better vpn support
Parrot OS are now more stable and reliable than before, and we are pushing forward with
network-manager now integrates all the available vpn plugins by default
plans to not only add more profiles but utilize firejails capabilites to it's fullest
## matrix and riot.im
revolt matrix client now replaces dino-im xmpp client.
with our custom profiles development and testing.
MATRIX is a very powerful and advanced federated instant messaging protocol, and we are working to move
## Better OpenVPN support
our community to it.
Setting up your VPN should be painless and quick. Network-manager now integrates all the
available VPN plugins by default, allowing that experience to be just that.
## reverse engineering news
While we evaluate the inclusion of NSA's Ghidra, we decided to include Cutter, a powerful GUI to radare2, which is one of the most powerful reverse engineering frameworks out there.
## Matrix and Riot.IM
We love federated instant messaging protocols! We love [XMPP](https://xmpp.org/about/) and [Matrix](https://matrix.org/blog/index) for what they bring to the table.
Though we like [Dino](https://dino.im/) we realized we wanted something that was sexy, lightweight
and worked with XMPP and MTProto. Using Matrix does all of this and more through bridges.
Cutter makes it easier to work with the radare2 framework and pushes the Parrot reverse engineering capabilities to a new level.
[Revolt](https://github.com/aperezdc/revolt) is a [Riot.IM](https://about.riot.im/) desktop integration written mostly in Python, and shell fits our needs perfectly. (Riot.IM is a chat client built on the Matrix protocol.)
## improved drivers support
There are several Matrix clients to pick from and we're still testing. But as we work to move our community torward XMPP and Matrix we think it makes sense to have Revolt, you never know when skynet will be activated :)
Parrot 4.6 includes the Linux 4.19 kernel includes security patches, performance improvements and a better hardware support.
## Improved drivers support
Parrot 4.6 includes the Linux 4.19 kernel which contains several security patches, performance improvements and a better hardware support.
Moreover Parrot 4.6 features important updates for broadcom and other wireless chipset manufacturers,
and the Nvidia drivers were updated to the latest 410 version with better Quadro support.
[Debian Kernel Changelog](https://metadata.ftp-master.debian.org/changelogs//main/l/linux-signed-arm64/linux-signed-arm64_4.19.28+2_changelog) - [Linux changelog](https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19)
## reverse engineering news
While we evaluate the inclusion of NSA's Ghidra, we decided to include [Cutter](https://github.com/radareorg/cutter), a powerful GUI to radare2, which is one of the most powerful reverse engineering frameworks out there.
Cutter makes it easier to work with the radare2 framework and pushes Parrot's reverse engineering capabilities to a new level.
## tool updates
## Tool updates
Many tools reveived important updates since the release of the previous Parrot version. From airgeddon to metasploit up to the latest bettercap version, all the tools are now up to date to their latest versions compatible with Parrot.
Many tools received important updates since the release of the previous Parrot version. From airgeddon to metasploit up to the latest bettercap version, all the tools are now up to date to their latest versions compatible with Parrot.
## development support improved
......@@ -117,4 +149,11 @@ Metapackages were improved to be more lightweight by default, and the mono runti
## other system updates
The MATE desktop environment received some minor stability updates, and Firefox 65 was included.
\ No newline at end of file
The MATE desktop environment received some minor stability updates, and Firefox 65 was included.
## The Road ahead
Write a brief summary of how things have changed within the Project (all
the people we added and how much things will change)
Then write up our roadmap to include:
The hardening we intend to do
## Contributors
| Nickname | Name | Email |
| ------------- | ------------------ | --------------------------------- |
| nikksno | Nicolas North | nz at os dot vu |
| Nico_Paul | Nico Gialluca | nico at parrotsec dot org |
| h0tw4t3r | | |
| mastrobirraio | Pino Matranga | |
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment