BSD Magazine (Mar 2012): Nessus, Exploitation Tools and Payloads

March’s issue of the BSD Magazine is now available: Nessus, Exploitation Tools and Payloads (free PDF download).

You’ll find the following subjects inside:

  • MaheshaBSD-2.0: What’s New On The Lake Manasarovar?
  • GhostBSD: A Brief Overview
  • How Do I Study for the BSDA Certification?
  • GDB and Truss for Debugging
  • PostgreSQL: MVCC and Vacuum
  • Beowulf Clusters with DragonflyBSD
  • Npppd: EasyPPTP VPN with OpenBSD
  • Anatomy of FreeBSD Compromise Part 4

Read and download Nessus, Exploitation Tools and Payloads (BSD Mag 12/03)

BSD Magazine (Feb 2012): BSD Certification: How? When? Why?

February’s issue of the BSD Magazine is now available: BSD Certification: How? When? Why? (free PDF download).

About 2 years ago the future of BSD Mag was uncertain, but we’re hoping we’re going to see another 12 issues this year. Well done to the editors and contributors!

Inside that latest issue you’ll find the following subjects:

  • Why Should I Become BSDA Certified?
  • Customizing Your PC-BSD 9.0 Desktop
  • The MidnightBSD Package Management Tools
  • What Can’t You Do On The command-line?
  • PostgreSQL: From Installation to PITR
  • OpenBSD with SUN JAVA & Netbeans
  • Load Balancers. Enterprise Load & Service Availability
  • Anatomy of FreeBSD Compromise Part 3
  • Data Classification Policy
  • Counting Our Losses

Read and download the magazine here: BSD Certification: How? When? Why

 

BSD Magazine – January 2012 issue is out

January’s issue of the BSD Magazine is now available: FreeBSD: Get Up-To-Date (free PDF download). You’ll find the following subjects:

  • What’s New in FreeBSD 9.0 by Dru Lavigne
  • Puppet on FreeBSD
  • FreeBSD IPS With Snort Inline
  • malloc(9): The Kernel’s General Purpose Memory Allocator
  • Keeping FreeBSD’s Base System and Packages Up-To-Date
  • Anatomy of a FreeBSD Compromise (Part 2)
  • Home Brew Captive Portal With OpenBSD

Read or download this issue from: http://bsdmag.org/magazine/1784-freebsd-get-up-to-date.

 

Rolling Your Own Kernel (BSD Magazine 2011-12)

December’s issue of the BSD Magazine is available: Rolling Your Own Kernel.

  • Free Issue to Download! BSD 12/2011
  • Google Code-In and FreeBSD’s Participation
  • Installing PC-BSD on a Mac
  • Keeping Your Configuration Files Shiny as New Using sysmerge(8)
  • Rolling Your Own FreeBSD Kernel
  • OpenBSD 5.0: PHP, Cacti, and Symon
  • Extracting Useful Information From Log Messages
  • Anatomy of a FreeBSD Compromise (Part 1)
  • Hardening BSD with Security Levels
  • FreeBSD Foundation Update

The Inevitability of IPv6 (BSD Magazine 2011-10)

A new issue (October 2011) of the free BSD Magazine is now available: The Inevitability of IPv6 (pdf).

From the table of contents:

Configuring a FreeBSD Stealth Logging Server
The collection of log files provides security administrators with the ability to have an audit trail for the behavior of an information system. In the event that a system is compromised, remote logging provides a forensic trail to determine what occurred on the system.

DragonflyBSD News: Recovering Data With Hammer
It’s been a while since we had a straightforward news report for DragonFly; the time since then has been filled with reports on Hammer and bulk pkgsrc builds.

Using Openmaps Data With Geoserver
In this article in our GIS series, we will examine how to import Openmaps data. Open Street Map (openstreetmap.org) founded in July 2004 by Steve Coast, is a treasure trove of worldwide street maps available under the Creative Commons licence.

ONMP on OpenBSD 4.9
ONMP on OpenBSD 4.9OpenBSD is my BSD of choice. In fact, it is my OS of choice wherever possible. I always challenge those who disagree with me to name another OS with a similar track record for security.

OSSEC on OpenBSD (ONMP) 4.9
It is worth saying up front that these instructions assume that you’re running Nginx compiled from source vice Apache or Nginx from Ports or Packages.

Taking a Peek Under the Hood Without Compromising Security – LibGTop and OpenBSD
LibGTop allows developers to peek under the hood of the kernel and export lots of system data in a convenient and easy to use library.

Protecting Apache From Dos And Ddos Attacks
DOS or DDOS, it is an attack where multiple compromised systems (which are usually infected with a Trojan) are used to target a single system in attempt to make the system resources(cpu,memory,network) unavailable to its intended users and causing system to crash.

The Inevitability of IPv6, Part 1 & 2
Part 1: A switch from IPv4 to IPv6 is on your horizon. Are you ready for it?
Part 2: Configure IPv6 in your network – even if your routing infrastructure doesn’t yet support it.

BSD Mag (Oct 2011) – The Inevitability of IPv6

Protecting dynamic websites in FreeBSD (BSD Magazine 2011-09)

A new, free to download, issue of the BSD Magazine (September 201) is now available: Protecting dynamic websites in FreeBSD (pdf).

From the table of contents:

  • DNSSEC resolution and IPv6 Unbound on FreeBSD 8.2
  • Keeping up to date in PC-BSD 9
  • Using Life Preserver to Backup a PC-BSD 9.0 System to FreeNAS™ 8.0.1
  • Recovering data with hammer
  • Apache2, php5, mysql5, modsecurity2.5 installation and confguration in order to protect dynamic websites from various attacks, in Freebsd 8.2
  • MySQL Unleashed!
  • Terminal Descriptions for OpenBSD AMD/Intel consoles
  • (Ab)using VideoLAN: Learn what you can do with your video and audio using powerful VideoLAN command line interface
  • NetBSD Intrusion Detection Server. How can we describe the functions of such a server?

 

Quick news: BSD Magazine, FreeBSD 9 IPv6 only, fwbuilder, Ruby

 

 

  • Fwbuilder 5 (Firewall Builder) released, supporting import of pf configurations. Firewall Builder can now import PF configurations in pf.conf format. To import a pf.conf configuration go to File -> Import Firewall and follow the prompts.

 

  • Older versions of the Ruby programming language were released under GPLv2 and “Ruby’s” license.  Ruby 1.9.3  is released under 2-clause BSDL and “Ruby’s” license.

BSD Security (BSD Magazine 2011-06)

A new issue of the free BSD Magazine is available: BSD Security (pdf).

From the table of contents:

Larger scale FreeBSD

I’ve often joked that it’s quite easy to manage one FreeBSD machine or one thousand, but if you have ten machines it can be quite a bit of work.

DragonflyBSD news: Testing Hammer Deduplication on Real-world Data

If you’ve been in the market for storage devices lately, you may have noticed a trend. Prices for various storage devices are generally determined by size, then speed, and then the whole price is increased by the features that come with that disk appliance.

PC-BSD’s New Control Panel

This article introduces the new Control Panel that will ship with PC-BSD 9.0. Readers are encouraged to try out the Control Panel prior to release by downloading a PC-BSD 9.0 testing snapshot or building the Control Panel on a PC-BSD 8.x system or a FreeBSD 8.x system that has Xorg configured.

Using POSTGIS tabular and geographic data with FreeBSD

In this article, we will look at extending our GIS server to use PostGIS.

Collectd – A look at the Systems Statistics Collection Daemon

Systems Administrators need a variety of tools to properly monitor and tune their systems to the various loads…

Using Memcached for High Scalability Web Services

Been creating web services/ applications for 6 years and until recently decided to try out memory caching technology instead of hitting up the ole SQL server for the same records over and over again.

LDAP Authentication and Authorization of Unix Users Under OpenBSD

Unlike most Unix-like operating systems, OpenBSD does not come with PAM nor nsswitch which made it tedious to authenticate local users against a remote database like LDAP. That was until ypldap(8) came along.

Building a complete intrusion detection system with Snorby on BSD

FreeBSD and OpenBSD are a popular choice for installing the open-source Snort intrusion detection. Documents have been written in the past for popular analysis tools such as BASE and Sguil, however nothing extensive has been created for Snorby.

Full Disk Encryption on FreeBSD

On systems (for instance laptop computers) that may be physicaly accessed or stolen by untrusted persons, encrypting sensitive pieces of data should be mandatory.

What It Takes: Starting and Running an Open Source Certification Program, Part II

Last month, in the first article in this series, we discussed the People aspect of running an Open Source certification program such as the BSD Certification Group (BSDCG). We discussed the types of people you’ll need in your program- SMEs, Writers, Translators, Technical Experts, Managers, the Advisory Group, and your Psychometrician.

Interview with Paul Shekenveld

Paul has participated in all nine EuroBSDcon editions so far and visited BSDcan and AsiaBSDcon several times. Today he is a member of EuroBSDcon 2011 comitee. In this months issue he will answer a few of our questions about the upcoming European BSD conference.