Skip to main content.

Episode 029: P.E.F.S.

2014-03-19

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent

This episode was brought to you by

iXsystems - Enterprise Servers and Storage For Open Source


Headlines

Using OpenSSH Certificate Authentication

  • SSH has a not-so-often-talked-about authentication option in addition to passwords and keys: certificates - you can add certificates to any current authentication method you're using
  • They're not really that complex, there just isn't a lot of documentation on how to use them - this post tries to solve that
  • There's the benefit of not needing a knownhosts file or authorizedusers file anymore
  • The post goes into a fair amount of detail about the differences, advantages and implications of using certificates for authentication

Back to FreeBSD, a new series

  • Similar to the "FreeBSD Challenge" blog series, one of our listeners will be writing about his switching BACK to FreeBSD journey
  • "So, a long time ago, I had a box which was running FreeBSD 4, running on a Pentium. 14 years later, I have decided to get back into FreeBSD, now at FreeBSD 10"
  • He's starting off with PCBSD since it's easy to get working with dual graphics
  • Should be a fun series to follow!

OpenBSD's recent experiments in package building

  • If you'll remember back to our poudriere tutorial, it lets you build FreeBSD binary packages in bulk - OpenBSD's version is called dpb
  • Marc Espie recently got some monster machines in russia to play with to help improve scaling of dpb on high end hardware
  • This article goes through some of his findings and plans for future versions that increase performance
  • We'll be showing a tutorial of dpb on the show in a few weeks

Securing FreeBSD with 2FA

  • So maybe you've set up two-factor authentication with gmail or twitter, but have you done it with your BSD box?
  • This post walks us through the process of locking down an ssh server with 2FA
  • With just a mobile phone and a few extra tools, you can enable two-factor auth on your BSD box and have just that little extra bit of protections

Interview - Gleb Kurtsou - gleb.kurtsou@gmail.com

PEFS (security audit results here)


Tutorial

Filesystem-based encryption with PEFS


News Roundup

BSDCan 2014 registration

  • Registration is finally open!
  • The prices are available along with a full list of presentations
  • Tutorial sessions for various topics as well
  • You have to go

Big changes for OpenBSD 5.6

  • Although 5.5 was just frozen and the release process has started, 5.6 is already looking promising
  • OpenBSD has, for a long time, included a heavily-patched version of Apache based on 1.3
  • They've also imported nginx into base a few years ago, but now have finally removed Apache
  • Sendmail is also no longer the default MTA, OpenSMTPD is the new default
  • Will BIND be removed next? Maybe so
  • They've also discontinued the hp300, mvme68k and mvme88k ports

Getting to know your portmgr lurkers

  • The "getting to know your portmgr" series makes its return
  • This time we get to talk with danfe@ (probably most known for being the nVidia driver maintainer, but he does a lot with ports)
  • How he got into FreeBSD? He "wanted a unix system that I could understand and that would not get bloated as time goes by"
  • Mentions why he's still heavily involved with the project and lots more

PCBSD weekly digest

  • Work has started to port Pulseaudio to PCBSD 10.0.1
  • There's a new "pc-mixer" utility being worked on for sound management as well
  • New PBIs, GNOME/Mate updates, Life Preserver fixes and a lot more
  • PCBSD 10.0.1 was released too

Feedback/Questions


  • All the tutorials are posted in their entirety at bsdnow.tv
  • The pkgng, ZFS, OpenBSD router and FreeBSD desktop tutorials have gotten some updates and fixes
  • If you were using the automatic errata checking script in the router tutorial, you need to redownload the new, fixed version (they rearranged some stuff on the website and broke it)
  • A few weeks' worth of new tutorials were uploaded ahead of time for the benefit of everyone, no point in holding them hostage - go check 'em all out
  • Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
  • Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)
  • Dusko, the winner of our tutorial contest, sent us a picture with his awesome FreeBSD pillow!
  • The AsiaBSDCon 2014 proceedings are out

Latest News

BSDCan 2014

2014-04-30

We just wrapped up episode 35 after having some horrible audio issues. Sorry about the quality being lower than usual, we did the best we could given the circumstances. Next week we've got a normal episode, but the following week Allan and Kris will be at BSDCan. That week will...

AsiaBSDCon 2014

2014-03-05

Both Allan and Kris will be going to AsiaBSDCon this year, so episode 28 will be shorter than usual. We'll be back the following week with a huge episode. Hopefully they can get some interviews there!...

Christmas & New Year

2013-12-19

Episode 16 was just uploaded, and that's the last one we'll be doing live for this year. Episode 17 will be on Christmas, and feature a prerecorded interview with Scott Long about his BSD magic over at Netflix. Thanks for watching everyone! We look forward to more BSD Now in...

Welcome iXsystems

2013-12-11

As you may have noticed in Episode 015, BSD Now has gotten our first sponsor! We're very happy to welcome iXsystems to the BSD Now team. In case you aren't familiar with them, they have quite a long history with FreeBSD. Their current CTO is in fact Jordan Hubbard, one of...


Episode 047: DES Challenge IV

2014-07-23

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines g2k14 hackathon reports Nearly 50 OpenBSD developers gathered in Ljubljana, Slovenia from July 8-14 for a hackathon Lots of work got done - in just the first two weeks of July, there were over...

Episode 046: Network Iodometry

2014-07-16

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines EuroBSDCon 2014 registration open September is getting closer, and that means it's time for EuroBSDCon - held in Bulgaria this year Registration is finally open to the public, with prices for businesses ($287), individuals...

Episode 045: ZFS War Stories

2014-07-09

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Interview - Josh Paetzel - josh@ixsystems.com / @bsdunix4ever Crazy ZFS stories, network protocols, server hardware All the tutorials are posted in their entirety at bsdnow.tv Send questions, comments, show ideas/topics, or stories you want...

Episode 044: Base ISO 100

2014-07-02

Direct Download: Video | HD Video | MP3 Audio | OGG Audio | Torrent This episode was brought to you by Headlines pfSense 2.1.4 released The pfSense team has released 2.1.4, shortly after 2.1.3 - it's mainly a security release Included within are eight security fixes, most of which are pfSense-specific OpenSSL, the WebUI and some packages...