Simple ZFS Backup Script

This article by Daemon Security shows us how to create a simple ZFS backup script in FreeBSD.

ZFS is a powerful filesystem that helps to maintain integrity by avoiding data corruption. A useful feature of ZFS is its ability to clone filesystems. Creating snapshots allows for filesystems to be cloned and restored if anything happens to the original data. Going beyond this is the ability to maintain incremental changes between snapshots. There are a number of scripts available that setup a similar backup system, but the idea here is to maintain a current dataset, with the ability to restore from two previous backups.

The first step is to setup a backup system, or backup drive to use for the ZFS snapshots. In this setup, there is a separate remote FreeBSD system where the snapshots will be stored. This remote system has an encrypted ZFS filesystem (AES XTS with geli on boot), which provides a secure backup of the data. The root account on the local system is setup with an SSH key and this is deployed to the remote system:

Check out the official post for step-by-step instructions: http://www.daemon-security.com/2014/08/zfsbackup-0805.html

FreeNAS 9.2.1.7 is released

FreeNAS_logo_light

The developers of FreeNAS have released version 9.2.1.7.

Well, we said 9.2.1.6 would be the last in the 9.2.1.x series, but CVE-2014-3560 (a possible remote Samba exploit) forced us to change those plans. Come and get it from here, as usual!

While we were at it, we also added a few small performance improvements and brought over a small feature from 9.3, namely the ability to do replication on a direct link without encryption, potentially speeding up replication anywhere from 3-4X (especially over 10GbE). This is generally most useful when doing initial replication to a backup box, while they are co-located together, after which normal encryption can be used in sending the deltas.

Appended are the release notes for 9.2.1.7. We encourage all existing 9.2.1.x users to upgrade. Thanks!

Download the ISO/image file here: http://download.freenas.org/9.2.1.7/RELEASE/

Check out the official announcement with the list of changes here: http://forums.freenas.org/index.php?threads/freenas-9-2-1-7-is-now-available.22601/

GhostBSD 4.0 RC1 now available

ghostbsd_1The developers of GhostBSD have made available the first release candidate of their 4.0-RELEASE cycle.

Changes and fix between 4.0-BETA3 and 4.0-RC1 include:

  • Xconfig from 3.5 was added back to system
  • A script is added to do configuration on the first boot of the new intallation
  • fix software dependency

A special thanks to those who had reported any issues.

Where to download:

The image checksums, ISO images and USB images are available here:
http://www.ghostbsd.org/download-4.0

Element Workstation:

Check out the official announcement here: http://ghostbsd.org/4.0-rc1

iXsystems Hosting MeetBSD California 2014, Western Digital San Jose

MEETBSD2014iXsystems will be hosting this year’s MeetBSD California, at Western Digital located in San Jose. This “unConference” will take place on November 1-2, 2014.

MeetBSD California is the premier BSD conference in the San Francisco Bay Area. Since its inception in 2008, MeetBSD California has been held every two years in Silicon Valley, bringing together BSD community members from all over the region and around the world.

Previous settings for MeetBSD California have included the Google and Yahoo! campuses and the Hacker Dojo in Mountain View. This year’s venue, the Western Digital campus in San Jose, will remind attendees that the hardware BSD runs on is just as important as the applications it can run.

Matt Rutledge, Senior Vice President and General Manager of Storage Technologies for WD, said “Open Source technology continues to be key to the future of scalable, maintainable computer systems, and groups like those that develop the BSD operating systems are a key part of that ecosystem. We’re thrilled to welcome the BSD community to WD for MeetBSD 2014, and look forward to the open, collaborative innovation they represent.”

Check out MeetBSD.com for more information on how to register.

Official announcement: http://www.prweb.com/releases/2014/08/prweb12077427.htm

FreeBSD ZFS snapshots with zfstools

In this blog by Michael W Lucas, he shows us how to use ZFS snapshots with zfstools on FreeBSD.

In my recent survey of ZFS snapshot automation tools, I short-listed zfstools and zfsnap. I’ll try both, but first we’ll cover FreeBSD ZFS snapshots with zfstools. Zfstools includes a script for creating snapshots, another for removing old snapshots, and one for snapshotting MySQL databases. The configuration uses only ZFS attributes and command line arguments via cron.

Check out the full blog with instructions here: http://blather.michaelwlucas.com/archives/2140

pkg 1.3.0 is released

portmgrThe FreeBSD Ports Management Team have released pkg 1.3.0 after 9 months of hard work. The following lists some of the major changes:

- New solver, now pkg has a real SAT solver able to automatically handle conflicts and dynamically discover them. (yes pkg set -o is deprecated now)
- pkg install now able to install local files as well and resolve their
dependencies from the remote repositories
- Lots of parts of the code has been sandboxed
- Lots of rework to improve portability
- Package installation process has been reworked to be safer and handle properly the schg flags
- Important modification of the locking system for finer grain locks
- Massive usage of libucl
- Simplification of the API
- Lots of improvements on the UI to provide a better user experience.
- Lots of improvements in multi repository mode
- pkg audit code has been moved into the library
- pkg -o A=B that will overwrite configuration file from cli
- The ui now support long options
- The unicity of a package is not anymore origin
- Tons of bug fixes
- Tons of behaviours fixes
- Way more!

Check out the official announcement here: https://lists.freebsd.org/pipermail/freebsd-ports-announce/2014-July/000084.html

Keep your FreeBSD install secure

Devil-psd35585This article by twisteddaemon shows you how to keep your FreeBSD install secure in 5 different ways.

FreeBSD installed. Your Next Five Moves Should be…..

The answer to the question in the title is not to break it.  Although that can very will be number six.  Instead make these next five changes to secure it.  I like the warm and fuzzy feeling of snug blankets and a secure computer. So all of these suggestions are related to security.  I would recommend these to anyone that is playing around with a FreeBSD install which will connect to the internet.

Check out the 5 next moves here: http://twisteddaemon.com/post/92921205276/freebsd-installed-your-next-five-moves-should-be