Gnome3 porting to FreeBSD

Personally I don’t like Gnome (2) and Gnome3 even less. There’s good news for those who are waiting for Gnome3 on FreeBSD: Gnome3 porting to FreeBSD.

Gnome3 isn’t working on FreeBSD as Gnome3 uses technologies that are not available to BSDs. I thought Gnome3 to BSD was a dead project till Juanjo Marin (Gnome Dev in Evince and A11y) mentioned a few things about BSD in Gnome’s Marketing ML.

FreeBSD Security Advisory (Bind)

The FreeBSD Security Team has identified an issue in Bind and has issued the following security advisory: FreeBSD-SA-12:05.bind.asc (06/08/2012).
I. Background

BIND 9 is an implementation of the Domain Name System (DNS) protocols. The named(8) daemon is an Internet Domain Name Server.

DNS Security Extensions (DNSSEC) provides data integrity, origin authentication and authenticated denial of existence to resolvers.

II. Problem Description

BIND 9 stores a cache of query names that are known to be failing due to misconfigured name servers or a broken chain of trust. Under high query loads, when DNSSEC validation is active, it is possible for a condition to arise in which data from this cache of failing queries could be used before it was fully initialized, triggering an assertion failure.

III. Impact

A remote attacker that is able to generate high volume of DNSSEC validation enabled queries can trigger the assertion failure that causes it to crash, resulting in a denial of service.

For a workaround and solution, check out the security advisory: FreeBSD-SA-12:05.bind.asc

August BSD Mag: Tuning ZFS on FreeBSD and Set up a VPN Server

The August issue of BSD Magazine is out: Tuning ZFS on FreeBSD.

From the table of contents:

Tuning ZFS on FreeBSD
By Martin Matuska

ZFS is a modern 128-bit file system based on the copy-on-write model. It originates from the OpenSolaris project and has first appeared in FreeBSD in 2008. ZFS has many innovative features including an integrated volume manager with mirroring and RAID capabilities, data checksumming and compression, writable snapshots that can be transferred between systems and many more. In this article the author is going to discuss several tuning options including sysctl(2) knobs and give examples how can ZFS performance and efficiency can be measured and evaluated. This article is intended for FreeBSD users with ZFS version 28 available since 8.3-RELEASE and 9.0-RELEASE.

MPD5 – VPN Server with FreeBSD Setup and Management
By Antonion Francesco Gentile

Mpd5 is a fast, flexible and secure way to make VPN connections on FreeBSD. It requires very few resources and supports a wide range of protocols, a great tool for network managers. By reading this article you will learn to setup and manage a VPN server PPTP based.

PostgreSQL Partitioning
By Luca Ferrari

In the previous articles the main features of PostgreSQL, including server-side programming were shown. In this article a simple application scenario will be used to demonstrate the capability of partitioning huge amounts of data into different tables in different spaces transparently.

Securing DNS Transactions
By Paul Ammann

In the June 2012 issue, we outlined the threats, security objectives, and protection approaches for various DNS transactions. This article provides the steps involved in implementing those approaches, as well as operational best practices that go with those implementations.

MaheshaBSD Server Edition Has Been Just Released!
By Juraj Sipos

Many newcomers to FreeBSD find it difficult to setup their own FTP/WWW server quickly and, on the other hand, experienced users sometimes need to take precautions for unexpected crash situations – that is, to have a strategy for time economization and portability, as these two are valuable assets in our rushing world. From this article you will find out ow to run a simple and smart FTP/WWW server.

New FreeBSD Audio System for the Kernel

Wolfgang Draxinger has started developing a new audio sub-system for the Linux kernel became frustrated by ALSA, OSS4, and PulseAudio. This new audio system is called KLANG, the Kernel Level Audio Next Generation.

The developer hopes KLANG will work not only with the Linux kernel but also the FreeBSD kernel. The open-source project is described as offering

“professional grade audio, that means lowest possible latency, latency compensation and bit exact precision at a very low CPU load. KLANG has been designed as a signal routing system, supporting seamless and transparent signal transport between all endpoints. In practice this means that there’s no distinction between hardware and process endpoints. Each endpoint is either a signal source or a sink, allowing for versatile signal routing topologies. All connections are fully latency compensated. A metronome system synchronizes the signal processing to a configurable set of system internal and external clock sources. This greatly simplifies tasks like audio/video synchronization.”

More information can be found on the KLANG website.

PC-BSD 9.1-BETA1 available for testing

The PC-BSD Team has announced BETA1 of the upcoming PC-BSD 9.1 and the images have been uploaded.

This beta provides both users and developers a way to test out the new features in the upcoming PC-BSD 9.1 release.

PC-BSD 9.1 comes with some exciting new features that will make things a lot easier for home/office users and administrators. There’s better sound configuration, support for running Linux in jails, multiple boot environments etc.

Other highlight are:

  • FreeBSD 9.1
  • KDE 4.8.4
  • New system installer! Greatly simplified for desktop and server installs.
  • New “PC-BSD Server” installation option. Includes command-line utilities like pbi-manager, warden, metapkgmanager and more.
  • Support for ZFS mirror / raidz(1,2,3) during installation.
  • Support for SWAP on ZFS, allowing entire disk ZFS installation.
  • Support for setting additional ZFS data-set options, such as compression, noexec, etc.
  • Warden jail management integrated into system. Allows creating jails via GUI, adding packages and other administration.
  • Support for Warden to create Linux Jails
  • New “Hardware compatibility” GUI
  • First boot setup wizard allows OEM installs to be easily performed.
  • New Bluetooth paring tray / GUI utilities.
  • New AppCafe improvements and preferences
  • Improvements to wifi utility
  • Fixed bug causing untranslated strings to show up empty.
  • Numerous bug-fixes to PC-BSD related utilities
  • Support for creating PXE boot server for remote desktop and installation.
  • ZFS beadm support

Happy testing.