The Inevitability of IPv6 (BSD Magazine 2011-10)

A new issue (October 2011) of the free BSD Magazine is now available: The Inevitability of IPv6 (pdf).

From the table of contents:

Configuring a FreeBSD Stealth Logging Server
The collection of log files provides security administrators with the ability to have an audit trail for the behavior of an information system. In the event that a system is compromised, remote logging provides a forensic trail to determine what occurred on the system.

DragonflyBSD News: Recovering Data With Hammer
It’s been a while since we had a straightforward news report for DragonFly; the time since then has been filled with reports on Hammer and bulk pkgsrc builds.

Using Openmaps Data With Geoserver
In this article in our GIS series, we will examine how to import Openmaps data. Open Street Map (openstreetmap.org) founded in July 2004 by Steve Coast, is a treasure trove of worldwide street maps available under the Creative Commons licence.

ONMP on OpenBSD 4.9
ONMP on OpenBSD 4.9OpenBSD is my BSD of choice. In fact, it is my OS of choice wherever possible. I always challenge those who disagree with me to name another OS with a similar track record for security.

OSSEC on OpenBSD (ONMP) 4.9
It is worth saying up front that these instructions assume that you’re running Nginx compiled from source vice Apache or Nginx from Ports or Packages.

Taking a Peek Under the Hood Without Compromising Security – LibGTop and OpenBSD
LibGTop allows developers to peek under the hood of the kernel and export lots of system data in a convenient and easy to use library.

Protecting Apache From Dos And Ddos Attacks
DOS or DDOS, it is an attack where multiple compromised systems (which are usually infected with a Trojan) are used to target a single system in attempt to make the system resources(cpu,memory,network) unavailable to its intended users and causing system to crash.

The Inevitability of IPv6, Part 1 & 2
Part 1: A switch from IPv4 to IPv6 is on your horizon. Are you ready for it?
Part 2: Configure IPv6 in your network – even if your routing infrastructure doesn’t yet support it.

BSD Mag (Oct 2011) – The Inevitability of IPv6

Protecting dynamic websites in FreeBSD (BSD Magazine 2011-09)

A new, free to download, issue of the BSD Magazine (September 201) is now available: Protecting dynamic websites in FreeBSD (pdf).

From the table of contents:

  • DNSSEC resolution and IPv6 Unbound on FreeBSD 8.2
  • Keeping up to date in PC-BSD 9
  • Using Life Preserver to Backup a PC-BSD 9.0 System to FreeNAS™ 8.0.1
  • Recovering data with hammer
  • Apache2, php5, mysql5, modsecurity2.5 installation and confguration in order to protect dynamic websites from various attacks, in Freebsd 8.2
  • MySQL Unleashed!
  • Terminal Descriptions for OpenBSD AMD/Intel consoles
  • (Ab)using VideoLAN: Learn what you can do with your video and audio using powerful VideoLAN command line interface
  • NetBSD Intrusion Detection Server. How can we describe the functions of such a server?

 

Sharing info and news on Google Plus

I have started to share news and information on the Google+ social network. I find the Google+ interface nicer and easier to update and follow than Facebook’s and Twitter’s. And, the privacy settings are more transparant and better than Facebook’s.

Anyway, if you’re on Google+ you can follow me at gplus.to/gvanessen. If you want to join G+ and want an invite, drop me a line.

Quick news: BSD Magazine, FreeBSD 9 IPv6 only, fwbuilder, Ruby

 

 

  • Fwbuilder 5 (Firewall Builder) released, supporting import of pf configurations. Firewall Builder can now import PF configurations in pf.conf format. To import a pf.conf configuration go to File -> Import Firewall and follow the prompts.

 

  • Older versions of the Ruby programming language were released under GPLv2 and “Ruby’s” license.  Ruby 1.9.3  is released under 2-clause BSDL and “Ruby’s” license.

FreeBSD news leftovers: BSD isn’t relevant, UNIX data center darling (week 28)

The following are some interesting FreeBSD related news bits from this week:

I.  Testing the (new) FBFS scheduler

The FBFS Scheduler (Google Summer of Code 2011) project aims to bring an experimental light-weight scheduler to FreeBSD and has now come to a state it can be tested: FreeBSD FBFS live DVD image is available now. There are many differences between Linux which is the original scheduler’s initial implementation platform and FreeBSD, so the port will be more like an reimplementation of some of the ideas. This project (FAQ) is brings a new perspective to the problem of scheduling – namely how would a simplified scheduler (without expensive tracking of process performance) behave for modern workloads (via).

II.  BSD isn’t relevant anymore (Lennart Poettering)

This is a typical anti-BSD story that gets featured on Slashdot: BSD Isn’t Relevant Anymore. The author is clearly out of touch with reality. The BSD community may be small compared to Windows and Linux, but that doesn’t mean BSD operating systems are not relevant anymore.

Maybe I shouldn’t even mention and refer to this piece of rubbish here ;-)

“In an interview with LinuxFr.org, Lennart Poettering speaks freely about his creations, PulseAudio, Avahi and systemd among other things. Naturally, what has stirred up most of the discussions online is Lennarts opinions on BSD. Following the recent proposal to make Gnome a Linux exclusive desktop, Lennart explains that he thinks BSD support is holding back a lot of Free Software development. This while also taking a stab at Debian kFreeBSD: ‘Debian kFreeBSD is a toy OS, people really shouldn’t misunderstand that.’”

III.  UNIX still data center darling

Unix systems may not be all the rage that they were two decades ago, but in nearly eight out of 10 data centers based on them, their use is either holding steady or increasing.

That’s the assessment of a recent survey of the HP, IBM, and Oracle Unix customer bases by Gabriel Consulting Group, which has just finished up its fifth annual slicing and dicing of Unix customer sentiments.

Unix systems have successfully colonized their neighborhoods in the data centers of the world, and are resisting the onslaught of Windows and Linux on those systems’ relatively inexpensive x64 iron. The Unix colonists are also resisting all of the marketing muscle and money that is dedicated to evicting them.

Full article: UNIX still data center darling

IV.  GhostBSD – New installer

The GhostBSD developers are working on a graphical installer. Previously, installation was done through a Python script, but a GUI installer “sells better” these days and will probably result in more people trying this O/S.

V.  BSD News in Russian

There are already a number of good Russian (Free)BSD related websites, but F-Andrey decided that this could be improved and launched http://bsdnir.blogspot.com. If you’re Russian or if Russian is a language you can read, have a look at bsdnir, or alternatively, you can use Google Translate.

BTW, if you’re interested in setting up a non-English FreeBSD related section on this website, please get in touch with me.

VI.  New ports committer

Ryan Steinmetz has been accepted as a new FreeBSD ports committer (15 July)

BSD Security (BSD Magazine 2011-06)

A new issue of the free BSD Magazine is available: BSD Security (pdf).

From the table of contents:

Larger scale FreeBSD

I’ve often joked that it’s quite easy to manage one FreeBSD machine or one thousand, but if you have ten machines it can be quite a bit of work.

DragonflyBSD news: Testing Hammer Deduplication on Real-world Data

If you’ve been in the market for storage devices lately, you may have noticed a trend. Prices for various storage devices are generally determined by size, then speed, and then the whole price is increased by the features that come with that disk appliance.

PC-BSD’s New Control Panel

This article introduces the new Control Panel that will ship with PC-BSD 9.0. Readers are encouraged to try out the Control Panel prior to release by downloading a PC-BSD 9.0 testing snapshot or building the Control Panel on a PC-BSD 8.x system or a FreeBSD 8.x system that has Xorg configured.

Using POSTGIS tabular and geographic data with FreeBSD

In this article, we will look at extending our GIS server to use PostGIS.

Collectd – A look at the Systems Statistics Collection Daemon

Systems Administrators need a variety of tools to properly monitor and tune their systems to the various loads…

Using Memcached for High Scalability Web Services

Been creating web services/ applications for 6 years and until recently decided to try out memory caching technology instead of hitting up the ole SQL server for the same records over and over again.

LDAP Authentication and Authorization of Unix Users Under OpenBSD

Unlike most Unix-like operating systems, OpenBSD does not come with PAM nor nsswitch which made it tedious to authenticate local users against a remote database like LDAP. That was until ypldap(8) came along.

Building a complete intrusion detection system with Snorby on BSD

FreeBSD and OpenBSD are a popular choice for installing the open-source Snort intrusion detection. Documents have been written in the past for popular analysis tools such as BASE and Sguil, however nothing extensive has been created for Snorby.

Full Disk Encryption on FreeBSD

On systems (for instance laptop computers) that may be physicaly accessed or stolen by untrusted persons, encrypting sensitive pieces of data should be mandatory.

What It Takes: Starting and Running an Open Source Certification Program, Part II

Last month, in the first article in this series, we discussed the People aspect of running an Open Source certification program such as the BSD Certification Group (BSDCG). We discussed the types of people you’ll need in your program- SMEs, Writers, Translators, Technical Experts, Managers, the Advisory Group, and your Psychometrician.

Interview with Paul Shekenveld

Paul has participated in all nine EuroBSDcon editions so far and visited BSDcan and AsiaBSDcon several times. Today he is a member of EuroBSDcon 2011 comitee. In this months issue he will answer a few of our questions about the upcoming European BSD conference.

FreeNAS 8 – Audio interview and Magazine Article

There’s an audio interview (bsdtalk 206- FreeNAS 8 with Josh Paetzel) on BSD Talk with Josh Paetzel, IT Director at iXsystems. Will Backman and Josh discuss FreeNAS 8 in a 17 minute interview. (MP3OGG)

The June 2011 issue of BSD Magazine (NanoBSD and ALIX) has an article “Introducing FreeNAS 8.0“. The issue can be downloaded for free from here.

 

Google discontinues BSD Search (google.com/bsd)

Long before even Google Image Search, Google News or Blog Search existed, there was the handy Google BSD Search @ www.google.com/bsd

Today Google announced it is discontinuing some specialised search services:

We are no longer offering specialized search services at google.com/linux, google.com/microsoft, google.com/bsd, google.com/mac, google.com/about and google.com/unclesam. These services were established many years ago to offer search across a limited index of the web, which in the past was a better way to find this information. For example, google.com/linux was designed to help people find information from message boards and blogs about the Linux operating system. Today, search quality has advanced tremendously, and based on our analysis we’ve found that in most cases you’re better off looking for this kind of specialized information using the regular Google search box, for example by typing [linux fedora upgrade]. We understand that some users were surprised by this change, so we apologize for not communicating more clearly in advance of redirecting these services to google.com

I’m not sure how many readers would have used the BSD search functionality, but I tend to include the operating system in the search string when looking for a solution.