FreeBSD Mall now shipping FreeBSD 8.1

Four-Disc CD Set, Dual-Sided DVD now available for purchase

The FreeBSD Mall is now shipping FreeBSD® Version 8.1, the second release of the FreeBSD 8-STABLE branch in AMD64 and i386 architectures.

FreeBSD Version 8.1 is the first update to FreeBSD Version 8.0, which added Virtual Access Points (VAP) support to 802.11 wireless networking, and allowed virtual machine administrators to create their own nested jails. The 8.1 release includes new features and improves upon the features that were introduced in FreeBSD Version 8.0.

The 8.1 release implements a ZFS Loader, allowing users to boot directly to ZFS. The ZFS pool has been updated to version 14. Also, NFSv4 support is improved, providing a more secure network filesystem for server based file serving.

In addition FreeBSD 8.1 updates sendmail to version 8.14.4, OpenSSH to version 5.4p1, ISC BIND to version 9.6.2-P2, and OpenSSL to version 0.9.8n. Desktop updates include KDE 4.4.5 and GNOME 2.30.1.

In this latest release, core developers focused their efforts on perfecting the functionality of the operating system to provide users with enhanced performance.

“FreeBSD 8.1 is the product of users deploying 8.0 in the field, and submitting reports of its strengths and weaknesses,. We, the developers, used those reports from the users to refine and improve the system across the board.”

said Warner Losh, Director of FreeBSD Development at iXsystems and FreeBSD Core Team Member.

Other notable features of FreeBSD 8.1 include:

  • SMP support in PowerPC G5 systems
  • UltraSPARC IV/IV+, SPARC64 V CPU support
  • The HAST (Highly Available STorage) framework has been added
  • Support for SCTP has been improved

FreeBSD Mall is a division of iXsystems, Inc.® and provides high quality FreeBSD software, documentation, support, and services to the open source community.

Source: FreeBSD Mall Now Shipping FreeBSD Version 8 (prweb.com)

MeetBSD 2010 videos available in HD on YouTube

The presentations from the recent MeetBSD 2010 (Cracow, Poland) conference are now available on the BSD Conferences Youtube Chanel. The following videos are all in HD quality and most are in English, though a few are in Polish.

  • Dru Lavigne – Update on BSD Certification
  • Hans Peter Selasky – The new USB stack in FreeBSD
  • Jakub Klama – FreeBSD on DaVinci DMSoC (polish)
  • Jan Srzednicki – What ideas can FreeBSD borrow from AIX?
  • Attilio Rao – The VFS/vnode interface in the FreeBSD kernel
  • Marko Zec – Network emulation using the virtualized network stack in FreeBSD
  • Pawe? Jakub Dawidek – HAST — Highly Available storage for FreeBSD (polish)
  • Pawe? Jakub Dawidek – HAST — Highly Available storage for FreeBSD (questions, polish)
  • Nikolay Aleksandrov – FreeBSD-based solution for Internet traffic management (S?awek ?ak – NoSQL)
  • Ramon Tancinco – meetBSD 2010 Welcome Intro
  • Martin Matuska – mfsBSD
  • Dmitri Epshtein – Advances in Embedded ARM processors, for performance driven applications
  • Warner Losh – Using FreeBSD in a Commercial Setting
  • (via)

    Chromium 7.0 FreeBSD builds available (1 week only)

    Ruben from the FreeBSD Chromium porting team emailed me to say that for this week only the latest Chromium 7.0 for FreeBSD subscriber builds will be available for free (excluding HTML 5 video).

    The subscriber builds are largely open source and funded by a hybrid model. If you like what you see, you may consider subscribing to the weekly builds and fund further development on this port.

    Download Chromium 7 for FreeBSD 8 (i386amd64) or FreeBSD 9 (amd64)

    Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web. This site contains design documents, architecture overviews, testing information, and more to help you learn to build and work with the Chromium source code.

    Miscelaneous FreeBSD news and links (week 32)

    1. FreeBSD East Coast Mirror

    Yesterday we posted the FreeBSD Foundation’s turns to NYI press release, Steven Kreuzer who was directly involved in the project has put more details on his website:

    Pretty much since the time that The NYC BSD Users Group was formed, The NY Internet Company have donated a full cabinet and a 10 Mb internet connection to NYCBUG. We used that space to host our website and mailing lists, hardware for developers and mirrors for all the major BSD projects.

    In October of 2009, I received an email inviting me to a grand opening party at NYI’s new state of the art data center located in Bridgewater, NJ. I asked some folks on core@ if they thought it would be worthwhile to approach NYI to see if they would be willing to donate a few cabinets so we could build out a FreeBSD mirror on the east coast. gnnjhb and I had a very informal meeting with Phil from NYI and after asking him if they would be willing to provide us with a few cabinets, some power and bandwidth, without thought or hesitation he said yes. The possibility of putting a mirror of FreeBSD.org on the east coast quickly became possible.

    Continues: East Coast FreeBSD Mirror

    2. FreeBSD VirtualBox Image for Port Maintainers

    This website provides 64bit VirtualBox Images for FreeBSD Port Maintainers with some common used software pre-installed.

    3. 10 Differences between Linux and BSD

    • Licenses
    • Control
    • Kernel vs operating system
    • UNIX/like
    • Base systems
    • More from source
    • Upgrades
    • Bleeding edge
    • Hardware support
    • User base

    Full post: 10 differences between Linux and BSD (techrepublic.com)

    4. Open Source projects that changed the world

    FreeBSD is one of them: Open source projects that changed the world (ostatic.com)

    5. BSDCan through the years

    Kirk Russell has posted a summary of BSDCan through the years on the Google Open Source Blog.

    I’m Kirk Russell, a Google Site Reliability Engineer who moves files around the cloud at a massive scale. I use BSD software on a daily basis — in my Android phone, my home NAS and my MacBook. My newest toy is a small ARM board that runs FreeBSD.

    Earlier this year I attended BSDCan, a software conference for BSD based operating systemprojects. I attended this conference to learn about new BSD technology that will someday become part of my daily life and to meet people with similar interests — there is time to chat in-between the scheduled talks and in the pub. BSDCan is a conference where I learn about new development that I can put to use both at work and at home. Learning these things from the original developers makes it that much more interesting.

    Here is a quick reflection on some highlights of past conferences:

    BSDCan through the years

    FreeBSD Foundation turns to NYI.net for East Coast US Mirror

    The following is a press release issued by the FreeBSD Foundation and New York Internet; Bill Lessard from nyi.net forwarded this to me.
    If you have any FreeBSD related products or services you want to generate interest in, why not contact me
    too?

    FreeBSD Foundation turns to NYI.net for East Coast US Mirror

    Deployment Adds Enterprise-Grade Redundancy for Improved Reliability, Reduced Latency, High-Speed Backups and Other Efficiencies

    The FreeBSD Foundation, a 501(c)(3) non-profit organization dedicated to supporting the FreeBSD Project and community, today announced that NYI, a New York City-based, mission-critical data services provider, will be mirroring key West coast infrastructure at NYI’s 999 Frontier Road data center in Bridgewater, New Jersey, a recently opened 40,000 square foot facility.

    In addition to providing enterprise-grade redundancy and reliability for the Project’s infrastructure, the East coast mirror will reduce latency during heavy download times, distribute load between the two coasts, and allow for up-to-date backups of all Project data that can be synchronized via high-speed Internet connections.

    “Having a well-connected, secondary site with NYI’s amenities to host FreeBSD project infrastructure means that we can move services between sites when doing scheduled maintenance to improve reliability for FreeBSD developers and users,”

    said Simon L. Nielsen, FreeBSD.org administrative team. He added,

    “The new site also enables us to expand significantly the available hardware for FreeBSD package building, allowing the FreeBSD ports team to perform QA test builds and quickly produce binary FreeBSD packages for end-users.”

    “We are long-time open-source advocates. The FreeBSD Foundation in particular represents everything that got us into technology in the first place. With this deployment, we take our commitment to a new level in the hope that what we are doing lays the foundation for next-generation data centers built around FreeBSD. As many people in the community know, NYI’s 999 Frontier Road facility features many of the Project’s efforts, as everything from PDUs to the servers run FreeBSD.”

    said Phillip Koblence, VP Operations, NYI.

    The East coast mirror at 999 Frontier is also notable because it replaces aging and inadequate hardware; provides dual-configuration so that experimental vs. production runs can be separated out, allowing changes to the ports system to be evaluated continuously rather the interrupting production flow; deploys to multiple sites, providing resiliency in the event of a failure; provides build capacity required to support the ports ABI changes required to improve the foundations for binary package support while maintaining ports-stable regression testing.

    The FreeBSD Foundation is pleased to have been able to fund the purchase of the hardware. Brad Davis, Mark Linimon, and Simon Nielsen from the FreeBSD Project worked on the configuration, along with key members of the NYI team.

    About The FreeBSD Foundation
    The FreeBSD Foundation is a 501(c)(3) non-profit organization dedicated to supporting the FreeBSD Project and community. The Foundation gratefully accepts donations from individuals and businesses, using them to fund and manage projects, sponsor FreeBSD events, Developer Summits and provide travel grants to FreeBSD developers. In addition, the Foundation represents the FreeBSD Project in executing contracts, license agreements, and other legal arrangements that require a recognized legal entity. The FreeBSD Foundation is entirely supported by donations. More information about The FreeBSD Foundation is available on the web.

    About NYI

    Established in 1996, NYI is headquartered in the heart of the Wall Street area and owns and maintains its own data centers, including 999 Frontier, a newly opened 40,000 square foot facility in Bridgewater, New Jersey. The company’s core services include colocation, dedicated servers, web and email hosting, and managed services, as well as turnkey disaster recovery and business continuity solutions from its Bridgewater location. With high-bandwidth connectivity partners AboveNet, Verizon Business, Optimum Lightpath, and AT&T, NYI specializes in mission-critical data services for the financial services industry, in addition to customers from a broad range of industries, including media, law, fashion, architecture, life sciences and real estate. NYI is SAS 70 Type II-compliant, in additon to being both PCI and HIPAA compliant.

    FreeBSD events and conferences (KyivBSD, MeetBSD, EuroBSD)

    Here is some info and details of upcoming FreeBSD related conferences and events.

    KyivBSD 2010 Conference

    On 25 Septempter the annual KyivBSD Conference will be held in Kiev, Ukraine. It’s mainly aimed at FreeBSD and PC-BSD users and developers.

    More info: http://ru.kyivbsd.org.ua (RU) (EN translation) (via)

    BSD-Day 2010

    BSD-Day@2010 will be held at Eötvös Loránd University, Budapest, Hungary on 20 November 2010.

    The purpose of this one-day event is to gather Central European developers of today’s open-source BSD systems, popularize their work, and provide a real-life communication interface between developers and users. There are no formalities, no papers, and no registration or participation fee, however the invited developers are encouraged to give a talk on their favorite BSD-related topic. The goal is to motivate potential future developers and users, especially undergraduate university students to work with BSD systems.

    EuroBSDCon 2010 Travel Grants

    The FreeBSD Foundation is now accepting travel grant applications for EuroBSDCon 2010 (Karlsruhe, Germany from October 8-10′. More details: EuroBSDCon 2010 Travel Grants.

    For those interested in open source firewalls, there will be a pfSense tuturial at EuroBSDCon 2010.

    pfSense is a free, open source customized distribution of FreeBSD tailored for use as a firewall and router. In addition to being a powerful, flexible firewalling and routing platform, it includes a long list of related features and a package system allowing further expandability without adding bloat and potential security vulnerabilities to the base distribution.

    MeetBSD 2010 (California)

    Registration is now open for MeetBSD 2010 (Mountain View, California, 5-6 November): www.meetbsd.com

    NYCBUG presentation

    Ivan Ivanov presented “Examples in Cryptography with OpenSSL”. Download/listen the MP3.

    Usenix Security Symposium 2010 (Capsicum)

    Robert Watson will present Capsicum (coming in FreeBSD 9.0) at Usenix Security Symposium.

    Capsicum is a lightweight operating system capability and sandbox framework planned for inclusion in FreeBSD 9. Capsicum extends, rather than replaces, UNIX APIs, providing new kernel primitives (sandboxed capability mode and capabilities) and a userspace sandbox API. These tools support compartmentalisation of monolithic UNIX applications into logical applications, an increasingly common goal supported poorly by discretionary and mandatory access control. We demonstrate our approach by adapting core FreeBSD utilities and Google’s Chromium web browser to use Capsicum primitives, and compare the complexity and robustness of Capsicum with other sandboxing techniques.

    These and other conferences can be found on my FreeBSD Events and Conferences Calandar.

    FreeBSD quick news and links (04/08/2010)

    PC-BSD Blog

    Dru Lavigne has joined the PC-BSD team this month. The first thing she did, was setting up another blog: the PC-BSD Blog. She already posts BSD related posts on it.toolbox.com: A year in the life of  a BSD guru.

    A new *BSD Planet Website

    Edward launched AboutBSD recently as a new *BSD blogs agregating website. It won’t be a copy of blogs.freebsdish.org or news.bsdplanet.net, but it will also have some background info on the different BSD systems.

    As for the goal for AboutBSD, I want to turn it into a planet website that aggregates how BSD system admins use BSD. So that new users or system admins can learn that BSD is flexible, powerful, and provides all the freedom one needs to deploy services on BSD.

    FreeBSD/Linux Benchmarking (Phoronix)

    PC-BSD Review: Strike that: now I’m a PC-BSD!

    The review finishes with:

    I would have no hesitation in recommending PC-BSD for desktop use. It has definitely been the best install experience for a desktop system I have had. It seems exactly tailored for someone like me, a developer in an office where we have tried to be operating-system-neutral as much as possible: most of our programmers do run PCs but we have weaned ourselves off any PC-only applications long ago (apart from specialist applications). As I mentioned in the previous blog, it is a smooth and pretty OS, and feels solid.

    Whole review here

    ZFS v15 imported into FreeBSD (head)

    As announced before, ZFS v15 was successfuly imported into FreeBSD! For a time there was an option of importing just v15 or proceeding directly to v16 but the community has decided to first import the older version for reasons of stability and compatibility with Solaris 10 Update 8. (via)

    Millions of home routers at risk.

    According to new research delivered today here at the Black Hat security conference, millions of home routers may have a serious security flaw.

    In his presentation at Black Hat, security researcher Craig Heffner detailed how an external attacker could gain full control of a user’s router and use that to gain access to the internal local area network (LAN). Though the implications are ominous, Heffner, also detailed a variety of steps users can take to protect themselves.

    You should use pfSense instead:

    Heffner also called on router vendors to build in DNS Rebinding mitigations into their routers directly.

    “The only router software that I know of that does this now is pfSense

    (Whole article here:  Millions of home routers at risk)

    Foremay ships world’s largest 2TB SSD

    This 2TB SSD should work on FreeBSD:

    Foremay has introduced a 1TB 2.5? SATA solid-state drive alongside the industry-leading 2TB 3.5? SATA SSD, as the company expects to see an increased demand in SSD products for the enterprise.

    The EC188 M-series model-V includes 200 MB/s read/write speeds, and can be used in the enterprise and workstation PCs.

    Ideally, enterprise users will be able to utilize the EC188 M-series model-V, as it includes support for Microsoft Windows, Mac, several versions of Linux, OpenSolaris, Solaris, FreeBSD, HP-UX, Unix, and other operating systems…. Continues

    Stopping SSH Brute Force attacks with PF on FreeBSD

    Most people know that port 22 is used for SSH communication and due to this common knowledge, you get people using scripts to test for weak passwords. If you look into your /var/log/auth.log and you see tons of fails/errors from users not on your system or from invalid passwords for root, it means you have people trying to break into your system. Truthfully, anyone that puts a system online with port 22 open will see this happen to them.  It’s quite common and not direct attack against you, just scripts looking for IPs with port 22 open.

    Now it goes without saying that you should make sure you have a strong password that take use of numbers, upper and low case letters and symbols. Doing this will go along way in preventing someone from breaking into your system. You should also ensure that people can’t remotely log in as root by making sure that you have ‘PermitRootLogin’ set to ‘no’ in your /etc/ssh/sshd_config file. This will ensure that no mater how many passwords they try for root they will never be able to log in.

    Now you could just set your SSH server to run on a different port or have your firewall redirect a different port from the outside to the system, but what’s the fun in that when you can use a great tool like PF.

    Read the whole howto: Stopping SSH Brute Force attacks with PF on FreeBSD

    A Deadly Linux/UNIX Command in Action (Video)

    The short and simple “rm -rf /” command is DISASTROUS.


    FreeBSD 8.1 release uses different open source philosophy

    This post was written by James Mowery, a computer geek who writes about technology and related topics.

    FreeBSD may not receive the attention that Linux does, but its latest upgrade could provide some instruction to the makers of Ubuntu about how to do open source releases. The makers of Ubuntu and the popular Linux Mint usually add new features to every release of these Linux distributions, whether or not these are features that the average users will ever need.

    FreeBSD 8.0 was the last large release of the operating system. Like Linux, FreeBSD is known for its security and stability, but it has never captured the imagination of computer users in the same way that Linus Torvald’s operating system has. Instead of introducing new features, 8.1 featured on making certain features released with the 8.0 upgrade more stable and improving the features that the user requested.

    Users who upgraded to 8.0 from earlier releases noted that there were problems with certain drivers, particularly those belonging to Network Interface Card manufactured by the Intel corporation. The bug fixes
    allowed computers running FreeBSD with Intel NICs to stay connected to the Internet and local area networks more reliably than they could in the previous incarnation.

    The developers of FreeBSD 8.1 hope that the design philosophy will lead to a shift where open source developers ave the new features for major releases and use the minor revisions to fix updates. Users of
    OpenOffice, whether or not they use the Linux versions, may benefit from such a shift, as the developers usually add features that were not requested with every new release.

    About the author: James Mowery is a computer geek that writes about technology and related topics. To read more blog posts by him, go to laptop computers.