FreeBSD 10.1 BETA 3 now available

freebsdlogoThe developers of FreeBSD have made available the final BETA of version 10.1.

The third BETA build of the 10.1-RELEASE release cycle is now available
on the FTP servers for the amd64, armv6, i386, ia64, powerpc, powerpc64
and sparc64 architectures.

This is expected to be the final BETA release of the 10.1-RELEASE cycle.

The image checksums follow at the end of this email.

Installer images and memory stick images are available here:

ftp://ftp.freebsd.org/pub/FreeBSD/releases/ISO-IMAGES/10.1/

If you notice problems you can report them through the Bugzilla PR
system or on the -stable mailing list.

If you would like to use SVN to do a source based update of an existing
system, use the “stable/10″ branch.

A list of changes since 10.0-RELEASE are available on the stable/10
release notes page here:

http://www.freebsd.org/relnotes/10-STABLE/relnotes/article.html

Check out the official announcement here: https://lists.freebsd.org/pipermail/freebsd-stable/2014-September/080264.html

Installing tomcat7 on FreeBSD

apachetomcat7This short tutorial by tugrulaslan will show you how to install tomcat7 on FreeBSD.

I’ve been wondering and playing around with FreeBSD recently as well as discovering the power of free unix operating system. So long story short I have installed FreeBSD on a virtual machine so that I can well manage it. So far I would like to enhance my operating system with free stuff and I have discovered the installation of tomcat on my freebsd. So let us get started.

First of all we need to install Java. There are two options first of all to make it clear that its very easy to install OpenJDK on freebsd because of I believe licensing issues that freebsd offers openjdk from its ports and it seems very painful to install Oracle JDK on it. So I will walk along with OpenJDK depending on your preference you may install Oracle JDK as well.

For full instructions head on over to the following link: http://tugrulaslan.com/?p=461

Installing MySQL on FreeBSD

MySQL.svg
This short tutorial by tugrulasan will show you how to install MySQL on FreeBSD.

Go to the installation folder
cd /usr/ports/databases/mysql56-server

carry out the installation command
make install clean

After a long run of installation edit the below file
nano /etc/rc.conf

add this line and save&exit
mysql_enable="YES"

start the server
/usr/local/etc/rc.d/mysql-server start

Set the root password
mysqladmin -u root password "YOUR-PASSWORD-GOES-HERE"

connect to your server
mysql -u root -p

Then to see status type in

mysql=> STATUS;

Check out the official post here: http://tugrulaslan.com/?p=467

Introducing ASLR In FreeBSD

Address Space Layout Randomization, an exploit mitigation technique which randomizes the in-memory layout of executables, is a feature lacking in FreeBSD that people have been asking for for a number of years. Oliver Pinter and Shawn Webb have come up with an innovative implementation of ASLR for FreeBSD. This presentation gives an introduction and a live demo of our ASLR implementation.

http://lanyrd.com/2014/eurobsdcon/sdffby/

Coverage of the session can be found here: https://github.com/lattera/presentations/blob/master/eurobsdcon/2014/introducing_aslr_in_freebsd.slide

FreeBSD Foundation Upcoming Events

The Foundation is pleased to attend a number of events over the coming months:

EuroBSDcon '14EuroBSDCon 2014

September 27-28, Sofia, Bulgaria

 

Diversity '14USENIX Diversity ’14

October 5, 2014, Broomfield CO

 

OSDI'14USENIX OSDI ’14

October 6-8, 2014, Broomfield, CO

 

GraceHopper 2014Grace Hopper Celebration

October 8-10, 2014, Phoenix, AZ

 

MeetBSD 2014MeetBSD California 2014

November 1-2, 2014, San Jose, CA

 

LISA14USENIX LISA ’14

November 9-14, 2014, Seattle, WA

 

For a description of each event, head on over to the following link: https://www.freebsdfoundation.org/activities/upcoming_events

Bash Vulnerability in FreeBSD

As has been widely reported, a major vulnerability in bash has been discovered. This vulnerability, which is being referred to as “Shellshock”, is considerably less severe in FreeBSD than most other Unix-like systems because bash is not in the base system, and FreeBSD does not link /bin/sh to bash by default. However, anyone running a system that uses bash, or especially one that might allow external input into bash environments, should be aware of this issue and patch any potentially vulnerable systems as soon as possible.

Brian Drewery (bdrewery [at] freebsd.org) has patched the FreeBSD bash port to disable function importing from the environment unless an option is set at build time. Packages should be available soon.

Brian also gave the following tips for reducing exposure to this vulnerablity:

The port is fixed with all known public exploits. The package is
building currently.

However bash still allows the crazy exporting of functions and may still
have other parser bugs. I would recommend for the immediate future not
using bash for forced ssh commands as well as these guidelines:

1. Do not ever link /bin/sh to bash. This is why it is such a big
problem on Linux, as system(3) will run bash by default from CGI.
2. Web/CGI users should have shell of /sbin/nologin.
3. Don’t write CGI in shell script / Stop using CGI :)
4. httpd/CGId should never run as root, nor “apache”. Sandbox each
application into its own user.
5. Custom restrictive shells, like scponly, should not be written in bash.
6. SSH authorized_keys/sshd_config forced commands should also not be
written in bash.

Related links:
https://svnweb.freebsd.org/ports?view=revision&revision=369341

http://blog.pcbsd.org/2014/09/bash-shell-bug/