Skip to main content.

Episode 029: P.E.F.S.

2014-03-19

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent

This episode was brought to you by

iXsystems - Enterprise Servers and Storage For Open Source


Headlines

Using OpenSSH Certificate Authentication

  • SSH has a not-so-often-talked-about authentication option in addition to passwords and keys: certificates - you can add certificates to any current authentication method you're using
  • They're not really that complex, there just isn't a lot of documentation on how to use them - this post tries to solve that
  • There's the benefit of not needing a knownhosts file or authorizedusers file anymore
  • The post goes into a fair amount of detail about the differences, advantages and implications of using certificates for authentication

Back to FreeBSD, a new series

  • Similar to the "FreeBSD Challenge" blog series, one of our listeners will be writing about his switching BACK to FreeBSD journey
  • "So, a long time ago, I had a box which was running FreeBSD 4, running on a Pentium. 14 years later, I have decided to get back into FreeBSD, now at FreeBSD 10"
  • He's starting off with PCBSD since it's easy to get working with dual graphics
  • Should be a fun series to follow!

OpenBSD's recent experiments in package building

  • If you'll remember back to our poudriere tutorial, it lets you build FreeBSD binary packages in bulk - OpenBSD's version is called dpb
  • Marc Espie recently got some monster machines in russia to play with to help improve scaling of dpb on high end hardware
  • This article goes through some of his findings and plans for future versions that increase performance
  • We'll be showing a tutorial of dpb on the show in a few weeks

Securing FreeBSD with 2FA

  • So maybe you've set up two-factor authentication with gmail or twitter, but have you done it with your BSD box?
  • This post walks us through the process of locking down an ssh server with 2FA
  • With just a mobile phone and a few extra tools, you can enable two-factor auth on your BSD box and have just that little extra bit of protections

Interview - Gleb Kurtsou - gleb.kurtsou@gmail.com

PEFS (security audit results here)


Tutorial

Filesystem-based encryption with PEFS


News Roundup

BSDCan 2014 registration

  • Registration is finally open!
  • The prices are available along with a full list of presentations
  • Tutorial sessions for various topics as well
  • You have to go

Big changes for OpenBSD 5.6

  • Although 5.5 was just frozen and the release process has started, 5.6 is already looking promising
  • OpenBSD has, for a long time, included a heavily-patched version of Apache based on 1.3
  • They've also imported nginx into base a few years ago, but now have finally removed Apache
  • Sendmail is also no longer the default MTA, OpenSMTPD is the new default
  • Will BIND be removed next? Maybe so
  • They've also discontinued the hp300, mvme68k and mvme88k ports

Getting to know your portmgr lurkers

  • The "getting to know your portmgr" series makes its return
  • This time we get to talk with danfe@ (probably most known for being the nVidia driver maintainer, but he does a lot with ports)
  • How he got into FreeBSD? He "wanted a unix system that I could understand and that would not get bloated as time goes by"
  • Mentions why he's still heavily involved with the project and lots more

PCBSD weekly digest

  • Work has started to port Pulseaudio to PCBSD 10.0.1
  • There's a new "pc-mixer" utility being worked on for sound management as well
  • New PBIs, GNOME/Mate updates, Life Preserver fixes and a lot more
  • PCBSD 10.0.1 was released too

Feedback/Questions


  • All the tutorials are posted in their entirety at bsdnow.tv
  • The pkgng, ZFS, OpenBSD router and FreeBSD desktop tutorials have gotten some updates and fixes
  • If you were using the automatic errata checking script in the router tutorial, you need to redownload the new, fixed version (they rearranged some stuff on the website and broke it)
  • A few weeks' worth of new tutorials were uploaded ahead of time for the benefit of everyone, no point in holding them hostage - go check 'em all out
  • Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
  • Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)
  • Dusko, the winner of our tutorial contest, sent us a picture with his awesome FreeBSD pillow!
  • The AsiaBSDCon 2014 proceedings are out

Latest News

Two Year Anniversary

2015-08-08

We're quickly approaching our two-year anniversary, which will be on episode 105. To celebrate, we've created a unique t-shirt design, available for purchase until the end of August. Shirts will be shipped out around September 1st. Most of the proceeds will support the show, and specifically allow us to buy...

New discussion segment

2015-01-17

We're thinking about adding a new segment to the show where we discuss a topic that the listeners suggest. It's meant to be informative like a tutorial, but more of a "free discussion" format. If you have any subjects you want us to explore, or even just a good name...

How did you get into BSD?

2014-11-26

We've got a fun idea for the holidays this year: just like we ask during the interviews, we want to hear how all the viewers and listeners first got into BSD. Email us your story, either written or a video version, and we'll read and play some of them for...

EuroBSDCon 2014

2014-09-18

As you might expect, both Allan and Kris will be at EuroBSDCon this year. They'll be busy hunting down various BSD developers and forcing them to do interviews, but don't hesitate to say hi if you're a listener!...


Episode 151: Fuzzy Auditing

2016-07-20

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines Multiple Bugs in OpenBSD Kernel Its patch Wednesday! (OR last Thursday if you were watching the mailing lists) Jesse Hertz and Tim Newsham (part of the NCC Group calling themselves project Triforce) have been...

Episode 150: Sprinkle a little BSD into your life.

2016-07-13

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines Distrowatch reviews OpenBSD and PCBSD's live upgrade method Upgrading… The bane of any sysadmin! Distrowatch has recently done a write-up on the in-place upgrading of various distros / BSDs including PC-BSD and...

Episode 149: The bhyve has been disturbed, and a wild Dexter appears!

2016-07-06

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines NetBSD Introduction We start off today’s episode with a great new NetBSD article! Siju Oommen George has written an article for BSDMag, which provides a great overview of NetBSD’s beginnings and what it...

Episode 148: The place to B...A Robot!

2016-06-29

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines FreeBSD Core Team Election Core.9 has been elected, and will officially take over from Core.8 on Wednesday, 6 July 2016 Many thanks to the outgoing members of the core team for their service over...