Skip to main content.

Episode 011: The Gateway Drug

2013-11-13

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent

Headlines

OpenSSH 6.4 released

  • Security fixes in OpenSSH don't happen very often
  • 6.4 fixes a memory corruption problem, no new features
  • If exploited, this vulnerability might permit code execution with the privileges of the authenticated user and may therefore allow bypassing restricted shell/command configurations.
  • Disabling AES-GCM in the server configuration is a workaround
  • Only affects 6.2 and 6.3 if compiled against a newer OpenSSL (so FreeBSD 9's base OpenSSL is unaffected, for example)
  • Full details here

Getting to know your portmgr-lurkers

  • Next entry in portmgr interview series
  • This time they chat with Mathieu Arnold, one of the portmgr-lurkers we mentioned previously
  • Lots of questions ranging from why he uses BSD to what he had for breakfast
  • Another one was since released, with Antoine Brodin aka antoine@

FUSE in OpenBSD

  • As we glossed over last week, FUSE was recently added to OpenBSD
  • Now the guys from the OpenBSD Journal have tracked down more information
  • This version is released under an ISC license
  • Should be in OpenBSD 5.5, released a little less than 6 months from now
  • Will finally enable things like SSHFS to work in OpenBSD

Automated submission of kernel panic reports

  • New tool from Colin Percival
  • Saves information about kernel panics and emails it to FreeBSD
  • Lets you review before sending so you can edit out any private info
  • Automatically encrypted before being sent
  • FreeBSD never kernel panics so this won't get much use

Interview - Justin Sherrill - justin@dragonflybsd.org / @dragonflybsd

DragonflyBSD 3.6 and the Dragonfly Digest


Tutorial

Building an OpenBSD Router


News Roundup

BSD router project 1.5 released

  • Nice timing for our router tutorial; TBRP is a FreeBSD distribution for installing on a router
  • It's an alternative to pfSense, but not nearly as well known or popular
  • New version is based on 9.2-RELEASE, includes lots of general updates and bugfixes
  • Fits on a 256MB Compact Flash/USB drive

Curve25519 now default key exchange

  • We mentioned in an earlier episode about a patch for curve25519
  • Now it's become the default for key exchange
  • Will probably make its way into OpenSSH 6.5, would've been in 6.4 if we didn't have that security vulnerability
  • It's interesting to see all these big changes in cryptography in OpenBSD lately

FreeBSD kernel selection in boot menu

  • Adds a kernel selection menu to the beastie menu
  • List of kernels is taken from 'kernels' in loader.conf as a space or comma separated list of names to display (up to 9)
  • From our good buddy Devin Teske

PCBSD weekly digest

  • PCDM has officially replaced GDM as the default login manager
  • New ISO build scripts (we got a sneak preview last week)
  • Lots of bug fixes
  • Second set of 10-STABLE ISOs available with new artwork and much more

Theo de Raadt speaking at MUUG

  • Theo will be speaking at Manitoba UNIX User Group in Winnipeg
  • On Friday, Nov 15, 2013 at 5:30PM (see show notes for the address)
  • If you're watching the show live you have time to make plans, if you're watching the downloaded version it might be happening right now!
  • No agenda, but expect some OpenBSD discussion

Feedback/Questions


  • The very extensive written version of today's tutorial, with lots of extras we didn't mention, is posted on bsdnow.tv, as always - give it a read! There are sections about setting up the router to tunnel all (or specific parts of) your traffic through a VPN or Tor, how to make the router automatically check for updates and email them to you, and much more.
  • Send questions, comments, show ideas/topics, etc to feedback@bsdnow.tv
  • We don’t check YouTube comments, JB comments, Reddit, etc. If you want us to see it, send it via email (the preferred way) or Twitter (also acceptable)
  • Watch live Wednesdays at 2:00PM Eastern (19:00 UTC)

Latest News

Two Year Anniversary

2015-08-08

We're quickly approaching our two-year anniversary, which will be on episode 105. To celebrate, we've created a unique t-shirt design, available for purchase until the end of August. Shirts will be shipped out around September 1st. Most of the proceeds will support the show, and specifically allow us to buy...

New discussion segment

2015-01-17

We're thinking about adding a new segment to the show where we discuss a topic that the listeners suggest. It's meant to be informative like a tutorial, but more of a "free discussion" format. If you have any subjects you want us to explore, or even just a good name...

How did you get into BSD?

2014-11-26

We've got a fun idea for the holidays this year: just like we ask during the interviews, we want to hear how all the viewers and listeners first got into BSD. Email us your story, either written or a video version, and we'll read and play some of them for...

EuroBSDCon 2014

2014-09-18

As you might expect, both Allan and Kris will be at EuroBSDCon this year. They'll be busy hunting down various BSD developers and forcing them to do interviews, but don't hesitate to say hi if you're a listener!...


Episode 147: Release all the things!

2016-06-22

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines 2016 FreeBSD Community Survey We often get comments from our listeners, “I’m not a developer, how can I help out”? Well today is your chance to do something. The FreeBSD Foundation has its...

Episode 146: Music to Beastie’s ears

2016-06-16

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines BSDCan Recap and Live Stream Videos OpenBSD BSDCan 2016 papers now available Allan’s slides and Paper Michael W Lucas presents Allan with a gift “FreeBSD Mastery: Advanced ZedFS” Highlighted Tweets: Groff Arrives at BSDCan...

Episode 145: At the Core of it all

2016-06-08

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Interview - Benno Rice - benno@freebsd.org / @jeamland Manager, OS & Networking at EMC Isilon Emily Dunham: Community Automation iXsystems 1U Rackmount Server - 4 Bay Hot-Swap SAS/SATA Drive Bays 400W Redundant Power Supply...

Episode 144: The PF life

2016-06-01

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines dotSecurity 2016 - Theo de Raadt - Privilege Separation and Pledge Video Slides Interested in Privilege Separation and security in general? If so, then you are in for a treat, we have both...