BSD Magazine (July 2013): Security and Cryptography in BSD

July’s issue of the BSD Magazine is now available: Security and Cryptography in BSD (free PDF download).

BSD_07_2013

This issue of BSD Magazine is dedicated to security concepts including Elliptic Curve Cryptography, Security Policy Development in TrustedBSD MAC Framework and Naxsi, the Nginx Web Application Firewall. Moreover, you will find articles about MaheshaOpenBSD and CSS programming.

You’ll find the following subjects inside:

  • An Eye For An Eye Soon Leads To Blindness
  • MaheshaOpenBSD – OpenBSD In A Serpent World
  • Security Policy Development in TrustedBSD MAC Framework
  • Using Nginx and Naxsi for Security and High Availability
  • FreeBSD Programming Primer – Part 6
  • Elliptic Curve Cryptography and Basic Applications in BSD OS

Security and Crytography in BSD

BSD Magazine (June 2013): FreeBSD on Rails

June’s issue of the BSD Magazine is now available: FreeBSD on Rails (free PDF download).

FreeBSD Mag June 2013You’ll find the following subjects inside:

  • A backup server with FreeBSD for mixed networks in SOHO environment
  • Keep OpenBSD customers satisfied
  • FreeBSD in Xen Cloud Platform (XCP)
  • FreeBSD on Rails
  • Manage your Ruby Versions Under FreeBSD
  • The British Broadcasting Corporation (BBC)
  • Creating PBI’s with EasyPBI
  • Sofin, the Software Installer

Continue reading

BSD Magazine (May 2013): Jails Firewall with PF

BSD Magazine (May 2013): Jails Firewall with PFApril’s issue of the BSD Magazine is now available: Jails Firewall with PF (free PDF download).

You’ll find the following subjects inside:

  • SpiderFoot 2.0: The Open Source Footprinting Tool
  • FreeBSD Jails Firewall with PF
  • Improvements to Jail Management via the Warden
  • msearch: MidnightBSD Search
  • Useful Utilities for PF
  • FreeBSD Programming Primer: Write HTML, CSS, PHP, and SQL Code
  • DTrace: A Deeper Approach

Continue reading

New BSD Magazine (March 2013): Handling Kernel Panic

March’s issue of the BSD Magazine is now available: Handling Kernel Panic (free PDF download).

You’ll find the following subjects inside:

  • Reacting to Panic: How to Configure the System to handle Crash Dumps
  • MaheshaBSD Server: MySQL and WordPress in FreeBSD
  • FreeBSD Programming Primer: How to Embed CSS and Javascript in Pages
  • Hardening FreeBSD with TrustedBSD and MAC: configuration of mac_ifoff, mac_portacl, and MAC LOMAC modules

Handling Kernel Panic

BSD Magazine (2012-02): Rehosting in NetBSD

BSD Mag 2012-02February’s issue of the BSD Magazine is now available: Rehosting in NetBSD (free PDF download).

You’ll find the following subjects inside:

  • VAX/OpenVMS Rehosting in NetBSD 6.0 Hosts
  • What’s around the Corner: A Look at Upcoming PC-BSD Changes
  • SSL for Dovecot and Roundcube for the Qmail MTA
  • FreeBSD Unattended Installation of Servers
  • FreeBSD Programming Primer (CMS)
  • Organizational Structure and Culture at FreeBSD

Download and read: Rehosting in NetBSD

(via G+)

A decade of OS Access-control Extensibility (MAC)

This is an interesting piece on mandatory access-control by the well-known computer researcher and FreeBSD Foundation member Robert Watson:

To discuss operating system security is to marvel at the diversity of deployed access-control models: Unix and Windows NT multiuser security; Type Enforcement in SELinux; anti-malware products; app sandboxing in Apple OS X, Apple iOS, and Google Android; and application-facing systems such as Capsicum in FreeBSD. This diversity is the result of a stunning transition from the narrow 1990s Unix and NT status quo to security localization—the adaptation of operating-system security models to site-local or product-specific requirements.

A Decade of OS Access-control Extensibility

BSD Magazine (Dec 2012): Linux Jails in PC-BSD

December’s issue of the BSD Magazine is now available: Linux Jails in PC-BSD (free PDF download).

You’ll find the following subjects inside:

  • Installing and Configuring Linux Jails in PC-BSD
  • A simple DNS-DHCP Server for Small Business Network with dnsmasq
  • Hardening FreeBSD with TrustedBSD and Mandatory Access Controls
  • FreeBSD Enterprise Search with Apache Solr
  • PostgreSQL: Schemas
  • EuroBSDcon and MeetBSD California: Two Continents, One Community

The Sandbox

8:45 Monday morning. I fill the espresso filter basket with a good measure of Italian coffee, flick the switch to espresso, and 60 seconds later am rewarded with a demitasse of viscous caffeine, complete with the requisite creamy head. Coffee is an essential part of the I.T. toolkit, especially when deadlines loom and the disconnect between customer, 3rd party supplier and the gap between expectations and reality becomes wider by the day…

Installing and Configuring Linux Jails in PC-BSD

Whether you prefer the CLI or a GUI, one thing most people can agree on, is that The Warden is a great tool for managing jails. The Warden has been available as an add-on in PC-BSD since version 8, and is available as a port in FreeBSD as well. It now comes built-in to version 9.1 of PC-BSD and TrueOS (a variant of PC-BSD included in the install DVD that consists of FreeBSD and enhanced command line versions of PC-BSD tools). This article explains how to use the Warden to create a Linux jail, configure nat for it and instal Linux packages in the jail.

FreeBSD Enterprise Search with Apache Solr (Part 4)

So far, we have used Solr to access and index content found in web pages, XML files, databases and external websites. But as far as using Solr in the enterprise is concerned, how can we access disparate documents such as PDF and Microsoft Word files? This is where Apache Tika is invaluable – supporting over 14 different types of document formats. In the final part of our series on Apache Solr the author will look at Apache Tika and demonstrate how to import and index document content with Apache Solr.

PostgreSQL: Schemas

This article provides an introduction to schemas, a feature of PostgreSQL that allow Database Administrators (DBAs) to organize their database objects, mainly tables, into name spaces in order to either avoid naming conflicts and better structure the database itself. All the examples shown here have been tested on a PostgreSQL 9.1 cluster running on a FreeBSD 8.2-RELEASE machine; all the example source code is available in a GitHub repository.

A simple DNS-DHCP Server for Small Business Network with dnsmasq

From this article you will learn how to setup and manage a Small Business DNS/DHCP server. A real example of small LAN business network are the so called “SoHo” (single office/home office SOHO), namely a category of businesses that has 1 to 10 employees, but this is only the staring point. In fact, there are examples of deployable environment for Dnsmasq configurations used for more than 1000 hosts. On the other side of the coin there are still some limitations, such as a very basic support for IPv6 router advertisements for DHCPv6 to work and the inability to serve many zone files (many domains), but this project brought us many surprises in time and will only get better. Knowing the strengths and limits of this daemon, a network administrator can now decide whether to install Dnsmasq.

Hardening FreeBSD with TrustedBSD and Mandatory Access Controls (Part 4)

Most system administrators understand the need to lock down permissions for files and applications. In addition to these configuration options on FreeBSD, there are features provided by TrustedBSD that add additional layers of specific security controls to fine tune the operating system for multilevel security. Since version 5.0 of FreeBSD, the TrustedBSD extensions have been included with the default install of the operating system. By default, this functionality is disabled and requires support to be compiled in or kernel modules to be loaded at boot time. For the purpose of this article, support will be loaded in with kernel modules already available with FreeBSD 9. Part 4 of the TrustedBSD series will cover the basic configuration of the mac_seeotheruids module.

EuroBSDcon and MeetBSD California: Two Continents, One Community

This year’s EuroBSDcon and MeetBSD California took place just a few weeks apart in two very different locations but together demonstrated seamless solidarity on the part of the BSD community. MeetBSD in Sunnyvale, California was like a reunion for many speakers and attendees who had recently met in Warsaw, Poland for EuroBSDcon. Some familiar European faces such as Robert Watson and Alexander Motin even made appearances only at the more distant event, showing once again that the geography of BSD and its community is “the Internet”. Read the overview describing both these wonderful events. Check what you have missed or refresh your memory.

PgDay.IT 2012

The sixth edition of the Italian PostgreSQL Day (PgDay) held at the Monash University Center in Prato, Tuscany, on November the 23th has been a success. The Italian community did respond very well to the event, and guests from all over the country came to discuss, acquire knowledge and share experience about this great database. Here is a great example of how passion can gather people together. Just follow their steps.

Download the December issue: Linux Jails in PC-BSD