Skip to main content.

Episode 095: Bitrot Group Therapy

2015-06-24

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent

This episode was brought to you by

iXsystems - Enterprise Servers and Storage for Open SourceDigitalOcean - Simple Cloud Hosting, Built for DevelopersTarsnap - Online Backups for the Truly Paranoid


Headlines

More BSDCan 2015 videos


OpenBSD httpd rewrite support

  • One of the most-requested features of OpenBSD's new HTTP daemon (in fact, you can hear someone asking about it in the video just above) is rewrite support
  • There were concerns about regex code being too complicated and potentially allowing another attack surface, so that was out
  • Instead, Reyk ported over an implementation of lua pattern matching while on the flight back from BSDCan, turning it into a C API without the lua bindings
  • In the mailing list post, he shows an example of how to use it for redirects and provides the diff if you'd like to give it a try now
  • It's since been committed to -current, so you can try it out with a snapshot too

SSH 2FA on FreeBSD

  • We've discussed different ways to lock down SSH access to your BSD boxes before - use keys instead of passwords, whitelist IPs, or even use two-factor authentication
  • This article serves as a sort of "roundup" on different methods to set up two-factor authentication on FreeBSD
  • It touches on key pairs with a server-side password, google authenticator and a few other variations
  • While the article is focused on FreeBSD, a lot of it can be easily applied to the others too
  • OpenSSH has a great security record, but two-factor authentication is always a good thing to have for the most important systems

NetBSD 7.0-RC1 released

  • NetBSD has just announced the first release candidate for the 7.0 branch, after a long delay since the initial beta (11 months ago)
  • Some of the standout features include: improved KMS/DRM with support for modern GPUs, SMP support on ARM, lots of new ARM boards officially supported, GPT support in the installer, Lua kernel scripting, a multiprocessor USB stack, improvements to NPF (their firewall) and, optionally, Clang 3.6.1
  • They're looking for as much testing as possible, so give it a try and report your findings to the release engineering team

Interview - Sean Chittenden - seanc@freebsd.org / @seanchittenden

FreeBSD at Groupon, ZFS


News Roundup

OpenSMTPD and Dovecot

  • We've covered a number of OpenSMTPD mail server guides on the show, each with just a little something different to offer than the last
  • This blog post about it has something not mentioned before: virtual domains and virtual users
  • This means you can easily have "user1@domain.com" and "user2@otherdomain.com" both go to a local user on the box (or a different third address)
  • It also covers SSL certificates, blocking spam and setting up IMAP access, the usual
  • Now might also be a good time to test out OpenSMTPD 5.7.1-rc1, which we'll cover in more detail when it's released...

OctoPkg, a QT frontend to pkgng

  • A PC-BSD user has begun porting over a graphical package management utility from Arch linux called Octopi
  • Obviously, it needed to be rewritten to use FreeBSD's pkg system instead of pacman
  • There are some basic instructions on how to get it built and running on the github page
  • After some testing, it'll likely make its way to the FreeBSD ports tree
  • Tools like this might make it easier for desktop users (who are used to similar things in Ubuntu or related distros) to switch over

AFL vs. mandoc, a quantitative analysis

  • Ingo Schwarze has written a pretty detailed article about how he and other OpenBSD developers have been fuzzing mandoc with AFL
  • It's meant to be accompanying material to his BSDCan talk, which already covered nine topics
  • mandoc is an interesting example to stress test with fuzzing, since its main job is to take and parse some highly varying input
  • The article breaks down the 45 different bugs that were found, based on their root cause
  • If you're interested in secure coding practices, this'll be a great one to read

OpenZFS conference videos

  • Videos from the second OpenZFS conference have just started to show up
  • The first talk is by, you guessed it, Matt Ahrens
  • In it, he covers some ZFS history, the Oracle takeover, the birth of illumos and OpenZFS, some administration basics and also some upcoming features that are being worked on
  • There are also videos from Nexenta and HGST, talking about how they use and contribute to OpenZFS

Feedback/Questions


  • Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv

Latest News

New announcement

2017-05-25

Hi, Mr. Dexter. Also, we understand that Brad Davis thinks there should be more real news....

Two Year Anniversary

2015-08-08

We're quickly approaching our two-year anniversary, which will be on episode 105. To celebrate, we've created a unique t-shirt design, available for purchase until the end of August. Shirts will be shipped out around September 1st. Most of the proceeds will support the show, and specifically allow us to buy...

New discussion segment

2015-01-17

We're thinking about adding a new segment to the show where we discuss a topic that the listeners suggest. It's meant to be informative like a tutorial, but more of a "free discussion" format. If you have any subjects you want us to explore, or even just a good name...

How did you get into BSD?

2014-11-26

We've got a fun idea for the holidays this year: just like we ask during the interviews, we want to hear how all the viewers and listeners first got into BSD. Email us your story, either written or a video version, and we'll read and play some of them for...


Episode 219: We love the ARC

2017-11-08

Direct Download:HD VideoMP3 AudioTorrent This episode was brought to you by Headlines Papers We Love: ARC: A Self-Tuning, Low Overhead Replacement Cache Ever wondered how the ZFS ARC (Adaptive Replacement Cache) works? How about if Bryan Cantrill presented the original paper on its design? Today is that day. Slides It starts by looking back at a fundamental paper...

Episode 218: A KRACK in the WiFi

2017-11-01

Direct Download:HD VideoMP3 AudioTorrent This episode was brought to you by Headlines FreeBSD 10.4-RELEASE Available FreeBSD 10.4-RELEASE is out. The FreeBSD Project dedicates the FreeBSD 10.4-RELEASE to the memory of Andrey A. Chernov. Some of the highlights: 10.4-RELEASE is the first FreeBSD release to feature full support for eMMC storage, including eMMC partitions, TRIM...

Episode 217: Your questions, part II

2017-10-25

Direct Download:HD VideoMP3 AudioTorrent This episode was brought to you by Headlines OpenBSD 6.2 Released OpenBSD continues their six month release cadence with the release of 6.2, the 44th release On a disappointing note, the song for 6.2 will not be released until December Highlights: Improved hardware support on modern platforms including ARM64/ARMv7 and octeon,...

Episode 216: Software is storytelling

2017-10-18

Direct Download:HD VideoMP3 AudioTorrent This episode was brought to you by Headlines EuroBSDcon Trip Report This is from Frank Moore, who has been supplying us with collections of links for the show and who we met at EuroBSDcon in Paris for the first time. Here is his trip report. My attendance at the...