Show Notes: coder.show/437

The post Microsoft War Stories | Coder Radio 437 first appeared on Jupiter Broadcasting.

Show Notes/Links: https://www.bsdnow.tv/333

The post Unix Keyboard Joy | BSD Now 333 first appeared on Jupiter Broadcasting.

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

Become a supporter on Patreon:

– Show Notes: –

Links

• ZFS in the trenches | BSD Now 123
• One small step for DRM, one giant leap for BSD | BSD Now 143
• The Laporte has landed! | BSD Now 152
• Ham, Radio & Pie, Oh My! | BSD Now 158
• The Foundation of NetBSD | BSD Now 162
• Return of the Cantrill | BSD Now 163

The post 2016 highlights | BSD Now 174 first appeared on Jupiter Broadcasting.

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Brought to you by: Linux Academy

Hacking the UPS

This week we install the NAS that was reviewed last episode, and take you through some of the hardware modifications we made to get this Linux rig installed.

— PICKS —

Runs Linux

The Synthetic Human RUNS LINUX

Sent in by: Craig T
Hi Guys,

I was watching a documentary over here that is forked from a new TV series Humanshttps://www.channel4.com/programmes/humans which follows a world where synthetic Human’s are part of life.

Anyway the show made a documentary to see how far off creating Synthetic human’s we are : How to build a Human https://www.channel4.com/programmes/how-to-build-a-human

They appear to be using Ubuntu to program the robot for speech interaction https://imgur.com/a/bBQos its at about 13:48through the video.

• Craig

Desktop App Pick

Ranger

Sent in by Tux t

Ranger is a console file manager with VI key bindings. It provides a minimalistic and nice curses interface with a view on the directory hierarchy. It ships with “rifle”, a file launcher that is good at automatically finding out which program to use for what file type.

• UTF-8 Support
• Multi-column display
• Preview of the selected file/directory
• Common file operations (create/chmod/copy/delete/…)
• VIM-like console and hotkeys
• Renaming multiple files at once
• Automatically determine file types and run them with correct programs
• Change the directory of your shell after exiting ranger
• Tabs, Bookmarks, Mouse support
• True Color Image previews [How to enable]
• Video thumbnails [How to enable]

Spotlight

SSH Tunnel

Sent in By Oliver A

Transparent proxy server that works as a poor man’s VPN. Forwards over ssh. Doesn’t require admin. Works with Linux and MacOS. Supports DNS tunneling.

Stickers – Super Key Sticker with Any LAS Sticker While They Last!

Chris’ Personal YouTube Channel – MeetBSD and Behind the Scenes Noah Vist Videos Soon

— NEWS —

• Ting Bottle Opener
• Ting data price drop
• Ting drops data prices to $10 GB beyond the first gig

Microsoft SQL On linux is The Real Deal

Now available in a public preview, SQL Server for Linux aims to be full-featured like the Windows edition and a robust, long-term choice for enterprises

Those who wondered what it would be like to run Microsoft SQL Server on Linux now have an answer. Microsoft has released the first public preview of the long-promised product.

Microsoft also wants to make clear this isn’t a “SQL Server Lite” for those satisfied with a reduced feature set. Microsoft has a four-point plan to make this happen.

Microsoft Joins the Linux Foundation

It isn’t about Linux alone

And neither is the Linux Foundation. A lot of the projects Microsoft has been helping under the Linux Foundation umbrella are infrastructure and developer-oriented projects that Microsoft’s user base is interested in using.

Microsoft still has a lot of proprietary software, and it’s going to stay that way

Make no mistake: This move does not constitute a signal that Microsoft is preparing to open-source its key products. The Microsoft Windows kernel, Microsoft SQL Server, crucial parts of the Azure stack, and so on—they are all still strong moneymakers for Microsoft in their current incarnations. You can expect them to remain proprietary for a good long while.

This helps Microsoft help itself

A common theme in discussions about Microsoft’s involvements with Linux and open source is that it’s been a self-serving effort. Over time, Microsoft has found more places where its best interests coincide nicely with those of others—but again, in a pragmatic and transactional manner.

There’s still a lot of room for change on Microsoft’s part

Don’t get this wrong, Microsoft joining the Linux Foundation would have been unthinkable even a short time ago. But it is only one of many possible steps that Microsoft could take.

The Five Dollar Tool That Breaks Passwords

The perils of leaving computers unattended just got worse, thanks to a newly released exploit tool that takes only 30 seconds to install a privacy-invading backdoor, even when the machine is locked with a strong password.

PoisonTap, as the tool has been dubbed, runs freely available software on a $5/£4 Raspberry Pi Zero device. Once the payment card-sized computer is plugged into a computer’s USB slot, it intercepts all unencrypted Web traffic, including any authentication cookies used to log in to private accounts. PoisonTap then sends that data to a server under the attacker’s control. The hack also installs a backdoor that makes the owner’s Web browser and local network remotely controllable by the attacker.

It Turns Out The Btrfs RAID 5/6 Issue Isn’t Completely Fixed

_with headlines like “btrfs RAID5/RAID6 support is finally fixed” when that’s very much not the case. Only one bug has been removed for the key use case that makes RAID5 interesting, and it’s just the first of many that still remain in the path of a user trying to recover from a normal disk failure.

Feedback:

• https://www.dropbox.com/s/26yiubqm4wv00if/video_2016-11-20_11-23-42.mov?dl=0

Mail Bag

• Name: Broken Canoe

• Subject: Data Privacy Following The Presidential Election

Hey Chris, – this is something I’ve had a lot of people ask me following Trump’s victory, – “should I keep my data in the cloud on services based in the US now that Trump is President?”

I think it’s a valid question, and one worth discussing on LAS or User Error. The general feeling is that infringements on privacy and civil liberties will only get worse in the coming years. Interested to hear your thoughts, more so that you use Dropbox.

Message: + Name: Daniel T

• Subject: Touchpad Issue

in Gnome 3.20 (I think) Gnome switched to use libinput over synaptic for the touchpad lib. you need to remove xf86-input-synaptic and install xf86-input-libinput. but you also need to remove the synaptic config file. Forgive me I don’t remember what/where it is. Antergos may still be setting it up with synaptic

Call in: 1-877-347-0011

New Show: User Error

• User Error | Jupiter Broadcasting

Catch the show LIVE SUNDAY:

• Noon Pacific
• https://jblive.tv
• Network Calendar

— CHRIS’ STASH —

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH’S STASH —

Noah’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux
• Altispeed Technologies
• System76 – system76

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

The post This Old Linux RV | LAS 444 first appeared on Jupiter Broadcasting.

Video Feed | MP3 Feed | OGG Feed | HD Torrent | Mobile Torrent | iTunes

Become an Unfilter supporter on Patreon:

— Show Notes —

Links:

• White House clarifies President Obama did know Hillary Clinton’s personal email | Daily Mail Online
• CIA Prepping for Possible Cyber Strike Against Russia – NBC News
• RT: NatWest to close Russian channel’s UK bank accounts – BBC News
• Former U.S. Attorney: Agents See FBI Chief Comey as a ‘Dirty Cop’ | The American Spectator
• Woman says Trump reached under her skirt and groped her in early 1990s – The Washington Post
• EXCLUSIVE AUDIO – Bill Clinton on Claim He Slept with Black Beauty Queen: ‘She’s Darkened My Door’ – Breitbart
• At Previous Debates, Melania Trump and Bill Clinton Shook Hands. Not Anymore. – The New York Times
• EXCLUSIVE VIDEO INTERVIEW: New Bill Clinton Sexual Assault Accuser Goes Public for the First Time – Breitbart
• WikiLeaks Deniers: The New Breed Of Conspiracy Nut
• New Emails: Hillary Needs Podium, ‘Cannot Walk Around’ | LifeZette
• I Wake You Up for the Presidential Debate | Scott Adams’ Blog
• Gutter politics: DNC sorry after campaign bus dumps sewage | fox4kc.com
• WikiLeaks 12: Hillary Caught Sending Classified Information To John Podesta’s Gmail Account In 2014, Who Did Not Have Security Clearance – MagaFeed
• CNN ‘Loses’ Satellite Feed As Congressman Mentions Clinton And WikiLeaks
• Jeff Pohjola on Twitter: “.@ABC’s @treyhardin16 reporting that @GOP has pulled all money dedicated to getting Trump elected and redirected it to down-ballot races.”
• Hacked emails show Clinton pushed for charity meeting in Morocco – CBS News
• BOMBSHELL FOX NEWS VIDEO: Clinton takes $12M just to speak with Moroccan King – YouTube
• The US Military is NOT HAPPY that Hillary Clinton told 70 MILLION people our nuclear launch times – YouTube
• Hillary Asked if She would Accept Outcome of Election After Debate and Avoids Answering – YouTube
• The US told Ecuador to kick Wikileaks off the internet – Business Insider
• Regarding the takeover at /r/Wikileaks : conspiracy
• No Consequences for Reporters Caught Colluding with Hillary | Observer
• EMAIL: Podesta asked ‘How bad is her head?’ – The American MirrorThe American Mirror
• LEAKED CLINTON DOCUMENTS: Discourage Trump Supporters with Crap Polls (Updated)
• Digital Test Shows Podesta Emails UNALTERED By WikiLeaks | The Daily Caller
• Proof That Donna Brazile Is Lying, Emails Authentic | The Daily Caller
• Active 4G LTE vulnerability allows hackers to eavesdrop on conversations, read texts, and track your smartphone location | Privacy Online News
• AT&T Is Spying on Americans for Profit – The Daily Beast
• WikiLeaks 18: Cheryl Mills Confirms Obama Used Private Email “we need to clean this up – he has emails from her – they do not say state.gov” – MagaFeed
• Hillary Clinton, The Podesta Group And The Saudi Regime: A Fatal Menage A Trois | Huffington Post
• ‘You are fascinated with sex’: That Megyn Kelly-Newt Gingrich showdown was one for the ages – The Washington Post
• Report: Colorado marijuana industry is already bigger than craft beer – Denverite
• War on drugs spokesman now supports marijuana legalization – MarketWatch
• Dr. Jill Stein Slamming ‘Corporate Media’
• Dr. Jill Stein on Twitter: “Why does the corporate media prop up Hillary and smear her opponents? Because they’re huge donors to her foundation. https://t.co/GXHuMB5Wl4”
• WIKILEAKS: Hillary Clinton Needed Someone to ‘Sober Her Up’ at 4:30 in the Afternoon |Heat Street
• Visualizing the U.S.-Mexico Border
• Jake Tapper on Twitter: “#Wikileaks: #Clinton camp discussed how to ‘clean up’ Obama’s remarks on Clinton’s private email https://t.co/q3sSoXOLzJ https://t.co/ynyAw273P9”

The post Wikileaks Melts the Media | Unfilter 210 first appeared on Jupiter Broadcasting.

Video Feed | MP3 Feed | OGG Feed | HD Torrent | Mobile Torrent | iTunes

Become an Unfilter supporter on Patreon:

— Show Notes —

Links:

• VIDEO: Hot mic catches Hillary trying to hide more coughing – The American MirrorThe American Mirror
• Researcher Bypasses iPhone Passcode Using the Technique the FBI Said Doesn’t Work
• Obama slams smear photo – POLITICO
• Clinton Foundation Barely Spent Any Money On Real Charity | The Daily Caller
• Barack Obama tribal photo ‘sent to Drudge Report by Hillary Clinton staff’ – Telegraph
• Mike Pence Says His Role Model for Vice President Is Dick Cheney – ABC News
• ‘We come to the terrible conclusion that the White House is defending ISIS’ – Russia – The Right Scoop
• Ex-Haitian Senate Leader Accuses Clintons of Bribery, Stealing Billions (VIDEO)
• ISIS Supporters Rush To Celebrate NYC Explosion – Vocativ
• Hillary Clinton’s computer server has been targeted by hackers at least four times | Daily Mail Online
• New York bombing: suspect named as more devices found in New Jersey | US news | The Guardian
• https://apple.news/AE4UNaVB9RXeduB-FEtct-g
• CNN Edits Out Hillary’s Reference To NYC Explosion As “Bombing” | Zero Hedge
• Evidence of HRC’s IT guy, Paul Combetta coming to Reddit and asking how to hide emails. (X-Post the_donald) : ClintonInvestigation
• Bombing Suspect Ahmad Rahami Arrested After Shootout With Police | Zero Hedge
• Syrian Ceasefire Collapses After Assad Slams “Naked American Aggression” | Zero Hedge
• Russia’s election: Free sausages and fraud allegations – POLITICO
• House panel looking into Reddit post about Clinton’s email server | TheHill
• New York, New Jersey bombings: Suspect charged with attempted murder – CNN.com
• Rita Katz on Twitter: “Disturbing:Small children a growing staple of recent months’ #ISIS propaganda, projecting a future for its barbarity https://t.co/FT810UKSkT”
• Trump and Birtherism – update | Scott Adams’ Blog
• Assessing the Risk of Trump | Scott Adams’ Blog
• Ahmad Khan Rahami, New York Area Bomb Suspect: What We Know : The Two-Way : NPR
• Hillary Clinton IT Specialist Caught Asking How To Destroy Evidence?
• Hillary Holds Small Rally at Temple=> Is Helped Up the Stairs
• George H.W. Bush to vote for Hillary Clinton – POLITICO
• U.N. suspends aid convoys in Syria after deadly attack on relief shipment – The Washington Post
• Marijuana is getting Canadians banned from the US for life
• Clinton Computer Tech May Have Tried To ‘Strip’ Emails | The Daily Caller
• Gallup poll: Public confidence in media falls to all-time low – POLITICO
• Americans’ Trust in Media Remains at Historical Low
• Only 6% of Americans trust the media – survey — RT America
• GOP chairman demands interview with Clinton IT aides after Reddit posts | TheHill
• House Committee Demands Interview With “Oh Shit” Guy By Friday At Noon Over Reddit Thread | Zero Hedge
• Emails Show Hillary Aide Sid Blumenthal Created Obama “Birther” Conspiracy | Zero Hedge
• Birther rumor and Sidney Blumenthal’s involvement with McClatchy | McClatchy DC
• FBI Lies Again: NYC Bomber Was On FBI “Radar” After All | Zero Hedge
• Hillary Clinton’s IT guy asked Reddit for help altering emails, a Twitter sleuth claims – The Washington Post
• Hillary Clinton and the birth of birtherism – The Rebel
• Reporter: Clinton Buddy Pitched Me Birther Story In 2008 | The Daily Caller
• Clinton Adviser Sid Blumenthal Spread Birther Story — Editor
• Penn Strategy Memo, March 19, 2007 – The Atlantic
• Mark Penn – Wikipedia, the free encyclopedia

The post New York Pressure Cooker | Unfilter 205 first appeared on Jupiter Broadcasting.

Plus a close look at the week’s world events, the dangerous situation in Crimea developing right now, the 2016 race & a huge Overtime!

Direct Download:

Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

Video Feed | MP3 Feed | OGG Feed | HD Torrent | Mobile Torrent | iTunes

Become an Unfilter supporter on Patreon:

— Show Notes —

Episode Links:

• NBC Ignores the Resignations of High Ranking DNC Officials Over Hacked E-Mails
• Senior GOP Officials Exploring Options if Trump Drops Out – ABC News
• Hillary Clinton made a small fortune by arming ISIS: Wikileaks – Daily Pakistan Global
• Hillary’s campaign denies FBI, IRS investigations into Clinton Foundation | Washington Examiner
• Cooperation With Russia Hinges on Syrian Regime’s Restraint, Obama Says – WSJ
• : Hundreds of Russians jailed in Ukraine – Russia's Foreign Ministry
• Busted! Khan Paid $375,000 From Clinton Foundation! Corruption Reigns! | Alternative
• Top Clinton Lobbyist Bundlers Tied to Foreign Banks, Governments
• WikiLeaks Proves the Alcohol Industry Is Working Against Marijuana
• How a Syrian refugee became an Olympic hero before the Rio Games even started
• Syria rebels ‘break government siege’ of Aleppo – BBC News
• Newly declassified document sheds light on how president approves drone strikes – The Washington Post
• Edward Snowden Tweets Cryptic Code: Was it a Dead Man’s Switch?
• Court documents detail FBI’s contact with ISIS recruiter before 2015 Garland attack | WFAA.com
• Republicans warn Donald Trump: Right the ship or lose Senate – CNNPolitics.com
• Clinton tops Trump by 10 in CNN Poll of Polls – CNNPolitics.com
• LMAO, People Thought Snowden Was Dead Because of a Tweet
• Is Something Wrong With Hillary: Bizarre Behavior, Seizure Allegations Raise Doubts About Her Health | Zero Hedge
• Who is Hillary’s Handler?
• Turkey’s Erdogan meets with Putin after rift – CNN.com
• The Daily 202: Why some Republican politicians are really coming out against Trump – The Washington Post
• Turkey’s Erdogan Meets Russia’s Putin for ‘New Page’ in Restored Relations – NBC News
• WikiLeaks on Twitter: “ANNOUNCE: WikiLeaks has decided to issue a US$20k reward for information leading to conviction for the murder of DNC staffer Seth Rich.”
• Seth Rich’s parents ask for help three weeks after he was slain on DC street | Daily Mail Online
• Dem Aide Seth Rich’s Death Still Inspiring Conspiracy Theories
• Julian Assange: Any DNC Staffer Could Have Been The Leaker | The Daily Caller
• DNC Data Director Seth Rich was likely assassinated by the Clintons
• Orlando shooter’s father attends Hillary Clinton rally in Kissimmee – wptv.com
• WikiLeaks Offers $20,000 Reward For Information On Seth Rich | The Daily Caller
• The Polls Aren’t Skewed: Trump Really Is Losing Badly | FiveThirtyEight
• FBI Agent Goaded Garland Shooter to “Tear Up Texas,” Raising New Alarms About Bureau’s Methods
• U.S. approves $1.15 billion sale of tanks, equipment to Saudi Arabia | Reuters
• Police will be required to report officer-involved deaths under new US system | US news | The Guardian
• Prosecutors in PG&E case abruptly reduce potential fines – SFGate
• Watchdog: Dallas woman discovers new Secret Service sex scandals through public information requests | Watchdog Column | DFW Investigations | Dave Lieber
• Report: George Zimmerman punched in face; witnesses say he bragged about killing Trayvon Martin | WFTV
• Private company wins U.S. clearance to fly to the moon | Reuters
• Democrats’ Tactic of Accusing Critics of Kremlin Allegiance Has Long, Ugly History in U.S.
• A Potent Endorsement Could Use More Transparency – The New York Times
• Is there a Russian master plan to install Trump in the White House? Some intelligence officials are skeptical. – The Washington Post
• Ex-CIA Director Who Endorsed Clinton Calls for Killing Iranians and Russians in Syria
• FBI chief Comey: “We have never had absolute privacy” | Ars Technica
• Donald Trump Suggests Shooting Hillary Clinton, Her Supreme Court Picks, Or Both
• News from The Associated Press
• Newly released Clinton emails shed light on relationship between State Dept. and Clinton Foundation – CNNPolitics.com
• Public Demand Investigation Of Six Anti-Clinton Activist Murders | Your News Wire
• Julian Assange Floats Theory That Murdered DNC Employee Was Informant In Dutch Interview – BuzzFeed News
• Top Democratic National Committee officials resign in wake of email breach – The Washington Post
• Roger Stone Confirms That He’s In Communication With Julian Assange
• Hillary Clinton Visits Wasserman Schultz’s Campaign | The Daily Caller
• Clinton: Destroy Syria for Israel –
• FLASHBACK: Hillary Clinton, Biden Hinted at Obama ‘Assassination’
• US Think Tank Admits US Carving Out “Safe Havens” In Syria
• New batch of Hillary Clinton emails obtained by legal group | US news | The Guardian
• Assange implies murdered DNC staffer was WikiLeaks’ source | Fox News
• Judge orders Glenn Beck to name sources from Boston Marathon reporting – Aug. 9, 2016
• Malia Obama Smoking Pot Claims Video After Lollapalooza Twerking | Radar Online
• Congressman: ‘Cash only’ for pot has to change | KING5.com
• Russia accuses Ukraine of attempted Crimea ‘incursions’ – BBC News
• Putin raises stakes over alleged Ukrainian terror plot in Crimea | World news | The Guardian
• Russia Claims It Thwarted Ukrainian-Devised Terror Attack in Crimea – NBC News
• TASS: Russian Politics & Diplomacy – Russian FSB prevents terrorist attack in Crimea prepared by Ukraine’s intelligence service
• Russian Navy to Hide Entire City in Smoke Screen
• State Department Asks For Delay Release Of Clinton Emails | The Daily Caller
• US presidential candidate Jill Stein thinks wi-fi is a threat to children’s health – ScienceAlert
• Judicial Watch Uncovers New Batch of Hillary Clinton Emails – Judicial Watch
• Assange JUST Released The New Wiki Leak Of 296 BRAND NEW Emails, Huma Committed Multiple Felonies! – Conservative Daily Post

The post How to Buy Democracy | Unfilter 199 first appeared on Jupiter Broadcasting.

Is the Bitcoin Foundation about to collapse or is the situation a bit overblown? We’ll discuss. OnLive finally gets a shutdown date & John Oliver helps refocus the surveillance debate.

Plus what we suspect is behind the elementary OS countdown clock!

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Video Feed | Torrent Feed

Become a supporter on Patreon

Show Notes:

Guys… My #1 Rig Died. What’s some of the first stuff you install/set on your new

John Oliver Just Changed The Surveillance Reform Debate | TechCrunch

It’s been almost two years since the world was captivated by Snowden’s leaks to The Guardian and The Washington Post about American surveillance programs. For weeks it seemed there was a new headline everyday about another previously classified surveillance program or another government official calling for action on this issue. Presidential review groups were called. President Obama called for major changes to the programs.

Oliver’s interview is timely as we approach an important deadline for surveillance reform on June 1. In response to the public outcry that followed the Snowden revelations, President Obama stipulated that congress must renew or reform the Patriot Act provision authorizing the bulk collection of Americans’ phone records by that date, or else the program will expire.

Last Week Tonight with John Oliver: Government Surveillance (John Oliver sits down with Edward Snowden to discuss the NSA, the balance between privacy and security @14 min. mark) : LinuxActionShow

OnLive, The First Big Streaming Games Service, Is Dead

OnLive, the first video game streaming service to really make waves (or at least headlines), is going to the great capital-C Cloud in the sky on April 30th. Ars Technica reports that all of the company’s patents have been sold off to Sony Computer Entertainment America, presumably for their PlayStation Now service, which is similarly focused on streaming games directly to players sans pesky intermediaries like the space-time continuum.

Has the Bitcoin Foundation Run Out of Cash?

The Bitcoin Foundation, an organization that promotes development of bitcoin, is ‘effectively bankrupt’ and has shed most of its staff, according to Olivier Janssens, a member of the foundation’s board of directors. Janssens attributed the foundation’s financial straits to two years of ‘ridiculous spending and poorly thought out decisions,’ adding that the board has tried to remedy the situation by finding a new executive director. Two other board members, however, said the foundation was not bankrupt, though in need of some kind of restructuring.

The Facts About the Bitcoin Foundation

BTCF Strategic Proposal

elementary Countdown

The post Bitcoin Recession | Tech Talk Today 154 first appeared on Jupiter Broadcasting.

Coming up this week on the show, we’ll be talking to Kamila Součková, a Google intern. She’s been working on the FreeBSD pager daemon, and also tells us about her initial experiences trying out BSD and going to a conference. As always, all the week’s news and answers to your emails, on BSD Now – the place to B.. SD.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

Major changes coming in PCBSD 11

• The PCBSD team has announced that version 11.0 will have some more pretty big changes (as they’ve been known to do lately with NTP daemons and firewalls)
• Switching from PF to IPFW provided some benefits for VIMAGE, but the syntax was just too complicated for regular everyday users
• To solve this, they’ve ported over Linux’s iptables, giving users a much more straightforward configuration
• While ZFS has served them well as the default filesystem for a while, Kris decided that Btrfs would be a better choice going forward
• Since the FreeBSD kernel doesn’t support it natively, all filesystem calls will be through FUSE from now on – performance is Good Enough
• People often complain about PCBSD’s huge ISO download, so, to save space, the default email client will be switched to mutt, and KDE will be replaced with DWM as the default window manager
• To reconfigure it, or make any appearance changes, users just need to edit a simple C header file and recompile – easy peasy
• As we’ve mentioned on the show, PCBSD has been promoting safe backup solutions for a long time with its “life preserver” utility, making it simple to manage multiple snapshots too
• To test if people have been listening to this advice, Kris recently activated the backdoor he put in life preserver that deletes all the users’ files – hope you had that stuff backed up

NetBSD and FreeBSD join forces

• The BSD community has been running into one of the same problems Linux has lately: we just have too many different BSDs to choose from
• What’s more, none of them have any specific areas they focus on or anything like that (they’re all basically the same)
• That situation is about to improve somewhat, as FreeBSD and NetBSD have just merged codebases… say hello to FretBSD
• Within a week, all mailing lists and webservers for the legacy NetBSD and FreeBSD projects will be terminated – the mailing list for the new combined project will be hosted from the United Nations datacenter on a Microsoft Exchange server
• As UN monitors will be moderating the mailing lists to prevent disagreements and divisive arguments before they begin, this system is expected to be adequate for the load
• With FretBSD, your toaster can now run ZFS, so you’ll never need to worry about the bread becoming silently corrupted again

Puffy in the cloud

• If you’ve ever wanted to set up a backup server, especially for family members or someone who’s not as technology-savvy, you’ve probably realized there are a lot of options
• This post explores the option of setting up your own Dropbox-like service with Owncloud and PostgreSQL, running atop the new OpenBSD http daemon
• Doing it this way with your own setup, you can control all the security aspects – disk encryption, firewall rules, who can access what and from where, etc
• He also mentions our pf tutorial being helpful in blocking script kiddies from hammering the box
• Be sure to encourage your less-technical friends to always back up their important data

NetBSD at AsiaBSDCon

• Some NetBSD developers have put together a report of what they did at the most recent event in Tokyo
• It includes a wrap-up of the event, as well as a list of presentations that NetBSD developers gave
• Have you ever wanted even more pictures of NetBSD running on lots of devices? There’s a never-ending supply, apparently
• At the BSD research booth of AsiaBSDCon, there were a large number of machines on display, and someone has finally uploaded pictures of all of them
• There’s also a video of an OMRON LUNA-II running the luna68k port

Interview – Kamila Součková – kamila@ksp.sk / @anotherkamila

BSD conferences, Google Summer of Code, various topics

News Roundup

FreeBSD foundation March update

• The FreeBSD foundation has published their March update for fundraising and sponsored projects
• In the document, you’ll find information about upcoming ARMv8 enhancements, some event recaps and a Google Summer of Code status update
• They also mention our interview with the foundation president – be sure to check it out if you haven’t

Inside OpenBSD’s new httpd

• BSD news continues to dominate mainstream tech news sites… well not really, but they talk about it once in a while
• The SD Times is featuring an article about OpenBSD’s in-house HTTP server, after seeing Reyk’s AsiaBSDCon presentation about it (which he’s giving at BSDCan this year, too)
• In this article, they talk about the rapid transition of webservers in the base system – apache being replaced with nginx, only to be replaced with httpd shortly thereafter
• Since the new daemon has had almost a full release cycle to grow, new features and fixes have been pouring in
• The post also highlights some of the security features: everything runs in a chroot with privsep by default, and it also leverages strong TLS 1.2 defaults (including Perfect Forward Secrecy)

Using poudriere without OpenSSL

• Last week we talked about using LibreSSL in FreeBSD for all your ports
• One of the problems that was mentioned is that some ports are configured improperly, and end up linking against the OpenSSL in the base system even when you tell them not to
• This blog post shows how to completely strip OpenSSL out of the poudriere build jails, something that’s a lot more difficult than you’d think
• If you’re a port maintainer, pay close attention to this post, and get your ports fixed to adhere to the make.conf options properly

HAMMER and GPT in OpenBSD

• Someone, presumably a Google Summer of Code student, wrote in to the lists about his HAMMER FS porting proposal
• He outlined the entire process and estimated timetable, including what would be supported and which aspects were beyond the scope of his work (like the clustering stuff)
• There’s no word yet on if it will be accepted, but it’s an interesting idea to explore, especially when you consider that HAMMER really only has one developer
• In more disk-related news, Ken Westerback has been committing quite a lot of GPT-related fixes recently
• Full GPT support will most likely be finished before 5.8, but anything involving HAMMER FS is still anyone’s guess

Feedback/Questions

• Morgan writes in
• Dustin writes in
• Stan writes in
• Mica writes in

Mailing List Gold

• Developers in freefall
• Xorg thieves pt. 1
• Xorg thieves pt. 2

• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv – tell us what you’d like to see on future episodes
• Just a reminder: we don’t really check YouTube or anything like that, so please email us if you want your comments to be seen
• Also, if you want to come on for an interview, or know of someone who’s doing something interesting with BSD, let us know
• We want to dedicate this week’s episode to the chairman of the EuroBSDCon foundation, Paul Schenkeveld – he’s been a great asset to all the BSD communities over the years, and just recently passed away (he’s also the one that encouraged Kamila to do an interview with us)
• He was especially known for his work in keeping EuroBSDCon fair and balanced to all the BSDs, something that we hope other conferences will also push for going forward
• Check his FOSDEM talk, as well as our interview and BSDTalk’s interview if you haven’t seen the man before
• Thanks for all the work you did, and rest in peace

The post woN DSB | BSD Now 83 first appeared on Jupiter Broadcasting.

This week on the show, we’ll be starting a two-part series detailing the activities of various BSD foundations. Ed Maste from the FreeBSD foundation will be joining us this time, and we’ll talk about what all they’ve been up to lately. All this week’s news and answers to viewer-submitted questions, coming up on BSD Now – the place to B.. SD.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

Key rotation in OpenSSH 6.8

• Damien Miller posted a new blog entry about one of the features in the upcoming OpenSSH 6.8
• Times changes, key types change, problems are found with old algorithms and we switch to new ones
• In OpenSSH (and the SSH protocol) however, there hasn’t been an easy way to rotate host keys… until now
• With this change, when you connect to a server, it will log all the server’s public keys in your known_hosts file, instead of just the first one used during the key exchange
• Keys that are in your known_hosts file but not on the server will get automatically removed
• This fixes the problem of old servers still authenticating with ancient DSA or small RSA keys, as well as providing a way for the server to rotate keys every so often
• There are some instructions in the blog post for how you’ll be able to rotate host keys and eventually phase out the older ones – it’s really simple
• There are a lot of big changes coming in OpenSSH 6.8, so we’ll be sure to cover them all when it’s released

NetBSD Banana Pi images

• We’ve talked about the Banana Pi a bit before – it’s a small ARM board that’s comparable to the popular Raspberry Pi
• Some NetBSD -current images were posted on the mailing list, so now you can get some BSD action on one of these little devices
• There are even a set of prebuilt pkgsrc packages, so you won’t have to compile everything initially
• The email includes some steps to get everything working and an overview of what comes with the image
• Also check the wiki page for some related boards and further instructions on getting set up
• On a related note, NetBSD also recently got GPU acceleration working for the Raspberry Pi (which is a first for their ARM port)

LibreSSL shirts and other BSD goodies

• If you’ve been keeping up with the LibreSSL saga and want a shirt to show your support, they’re finally available to buy online
• There are two versions, either “keep calm and use LibreSSL” or the slightly more snarky “keep calm and abandon OpenSSL“
• While on the topic, we thought it would be good to make people aware of shirts for other BSD projects too
• You can get some FreeBSD, PCBSD and FreeNAS stuff from the FreeBSD mall site
• OpenBSD recently launched their new store, but the selection is still a bit limited right now
• NetBSD has a couple places where you can buy shirts and other apparel with the flag logo on it
• We couldn’t find any DragonFlyBSD shirts unfortunately, which is a shame since their logo is pretty cool
• Profits from the sale of the gear go back to the projects, so pick up some swag and support your BSD of choice (and of course wear them at any Linux events you happen to go to)

OPNsense 15.1.4 released

• The OPNsense guys have been hard at work since we spoke to them, fixing lots of bugs and keeping everything up to date
• A number of versions have come out since then, with 15.1.4 being the latest (assuming they haven’t updated it again by the time this airs)
• This version includes the latest round of FreeBSD kernel security patches, as well as minor SSL and GUI fixes
• They’re doing a great job of getting upstream fixes pushed out to users quickly, a very welcome change
• A developer has also posted an interesting write-up titled “Development Workflow in OPNsense“
• If any of our listeners are trying OPNsense as their gateway firewall, let us know how you like it

Interview – Ed Maste – board@freebsdfoundation.org

The FreeBSD foundation‘s activities

News Roundup

Rolling with OpenBSD snapshots

• One of the cool things about the -current branch of OpenBSD is that it doesn’t require any compiling
• There are signed binary snapshots being continuously re-rolled and posted on the FTP sites for every architecture
• This provides an easy method to get onboard with the latest features, and you can also easily upgrade between them without reformatting or rebuilding
• This blog post will walk you through the process of using snapshots to stay on the bleeding edge of OpenBSD goodness
• After using -current for seven weeks, the author comes to the conclusion that it’s not as unstable as people might think
• He’s now helping test out patches and new ports since he’s running the same code as the developers

Signing pkgsrc packages

• As of the time this show airs, the official pkgsrc packages aren’t cryptographically signed
• Someone from Joyent has been working on that, since they’d like to sign their pkgsrc packages for SmartOS
• Using GNUPG pulled in a lot of dependencies, and they’re trying to keep the bootstrapping process minimal
• Instead, they’re using netpgpverify, a fork of NetBSD’s netpgp utility
• Maybe someday this will become the official way to sign packages in NetBSD?

FreeBSD support model changes

• Starting with 11.0-RELEASE, which won’t be for a few months probably, FreeBSD releases are going to have a different support model
• The plan is to move “from a point release-based support model to a set of releases from a branch with a guaranteed support lifetime”
• There will now be a five-year lifespan for each major release, regardless of how many minor point releases it gets
• This new model should reduce the turnaround time for errata and security patches, since there will be a lot less work involved to build and verify them
• Lots more detail can be found in the mailing list post, including some important changes to the -STABLE branch, so give it a read

OpenSMTPD, Dovecot and SpamAssassin

• We’ve been talking about setting up your own BSD-based mail server on the last couple episodes
• Here we have another post from a user setting up OpenSMTPD, including Dovecot for IMAP and SpamAssassin for spam filtering
• A lot of people regularly ask the developers how to combine OpenSMTPD with spam filtering, and this post should finally reveal the dark secrets
• In addition, it also covers SSL certificates, PKI and setting up MX records – some things that previous posts have lacked
• Just be sure to replace those “apt-get” commands and “eth0” interface names with something a bit more sane…
• In related news, OpenSMTPD has got some interesting new features coming soon
• They’re also planning to switch to LibreSSL by default for the portable version

FreeBSD 10 on the Thinkpad T400

• BSD laptop articles are becoming popular it seems – this one is about FreeBSD on a T400
• Like most of the ones we’ve mentioned before, it shows you how to get a BSD desktop set up with all the little tweaks you might not think to do
• This one differs in that it takes a more minimal approach to graphics: instead of a full-featured environment like XFCE or KDE, it uses the i3 tiling window manager
• If you’re a commandline junkie that basically just uses X11 to run more than one terminal at once, this might be an ideal setup for you
• The post also includes some bits about the DRM and KMS in the 10.x branch, as well as vt

PC-BSD 10.1.1 Released

• Automatic background updater now in
• Shiny new Qt5 utils
• OVA files for VM’s
• Full disk encryption with Geli v7

Feedback/Questions

• Camio writes in
• Sha’ul writes in
• John writes in
• Sean writes in (TJ’s lengthy reply)
• Christopher writes in

Mailing List Gold

• Special Instructions
• Pretending to be a VT220

• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv – if you’re doing anything cool with BSD, either at work or just as a hobby, let us know about it
• If you have someone specific you’d like to see interviewed, or a tutorial you’d like to see, we’re just an email away
• Watch live Wednesdays at 2:00PM Eastern (19:00 UTC)

The post From the Foundation (Part 1) | BSD Now 75 first appeared on Jupiter Broadcasting.

This week on the show, we’ll be talking with Paul Schenkeveld, chairman of the EuroBSDCon foundation. He tells us about his experiences running BSD conferences and how regular users can get involved too. We’ve also got answers to all your emails and the latest news, coming up on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

More BSD presentation videos

• The MeetBSD video uploading spree continues with a few more talks, maybe this’ll be the last batch
• Corey Vixie, Web Apps in Embedded BSD
• Allan Jude, UCL config
• Kip Macy, iflib
• While we’re on the topic of conferences, AsiaBSDCon’s CFP was extended by one week
• This year’s ruBSD will be on December 13th in Moscow
• Also, the BSDCan call for papers is out, and the event will be in June next year
• Lastly, according to Rick Miller, “A potential vBSDcon 2015 event is being explored although a decision has yet to be made.”

BSD-powered digital library in Africa

• You probably haven’t heard much about Nzega, Tanzania, but it’s an East African country without much internet access
• With physical schoolbooks being a rarity there, a few companies helped out to bring some BSD-powered reading material to a local school
• They now have a pair of FreeNAS Minis at the center of their local network, with over 80,000 books and accompanying video content stored on them (~5TB of data currently)
• The school’s workstations also got wiped and reloaded with FreeBSD, and everyone there seems to really enjoy using it

pfSense 2.2 status update

• With lots of people asking when the 2.2 release will be done, some pfSense developers have provided a status update
• 2.2 will have a lot of changes: being based on FreeBSD 10.1, Unbound instead of BIND, updating PHP to something recent, including the new(ish) IPSEC stack updates, etc
• All these things have taken more time than previously expected
• The post also has some interesting graphs showing the ratio of opened and close bugs for the upcoming release

Recommended hardware threads

• A few threads on caught our attention this week, all about hardware recommendations for BSD setups
• In the first one, the OP asks about mini-ITX hardware to run a FreeBSD server and NAS
• Everyone gave some good recommendations for low power, Atom-based systems
• The second thread started off asking about which CPU architecture is best for PF on an OpenBSD router, but ended up being another hardware thread
• For a router, the ALIX, APU and Soekris boards still seem to be the most popular choices, with the third and fourth threads confirming this
• If you’re thinking about building your first BSD box – server, router, NAS, whatever – these might be some good links to read

Interview – Paul Schenkeveld – freebsd@psconsult.nl

Running a BSD conference

News Roundup

From Linux to FreeBSD – for reals

• Another Linux user is ready to switch to BSD, and takes to Reddit for some community encouragement (seems to be a common thing now)
• After being a Linux guy for 20(!) years, he’s ready to switch his systems over, and is looking for some helpful guides to transition
• In the comments, a lot of new switchers offer some advice and reading material
• If any of the listeners have some things that were helpful along your switching journey, maybe send ’em this guy’s way

Running FreeBSD as a Xen Dom0

• Continuing progress has been made to allow FreeBSD to be a host for the Xen hypervisor
• This wiki article explains how to run the Xen branch of FreeBSD and host virtual machines on it
• Xen on FreeBSD currently supports PV guests (modified kernels) and HVM (unmodified kernels, uses hardware virtualization features)
• The wiki provides instructions for running Debian (PV) and FreeBSD (HVM), and discusses the features that are not finished yet

HardenedBSD updates and changes

• a.out is the old executable format for unix
• “The name stands for assembler output, and was coined by Ken Thompson as the fixed name for output of his PDP-7 assembler in 1968”
• FreeBSD, on which HardenedBSD is based, switched away from a.out in FreeBSD 3.0
• A restriction against NULL mapping was introduced in FreeBSD 7 and enabled by default in FreeBSD 8
• However, for reasons of compatibility, it could be switched off, allowing buggy applications to continue to run, at the risk of allowing a kernel bug to be exploited
• HardenedBSD has removed the sysctl, making it impossible to run in ‘insecure mode’
• Package Building Update: more consistent repo, no more i386 packages

Feedback/Questions

• Boris writes in
• Alex writes in
• Chris writes in
• Robert writes in
• Jake writes in

Mailing List Gold

• Real world authpf use
• The great perl event of 2014

• All the tutorials are posted in their entirety at bsdnow.tv
• If you’re in New York’s Capital District, there’s a meeting for the BSD users group on December 9th
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv – if there’s a tutorial you’d like to see, or maybe someone you want us to interview, let us know!
• Watch live Wednesdays at 2:00PM Eastern (19:00 UTC)
• Reminder: just like we ask during the interviews, we want to hear how all the viewers and listeners first got into BSD. Email us your story, either written or a video version, and we’ll read and play some of them for the Christmas episode. You’ve got until December 17th to send them in.

The post Conference Connoisseur | BSD Now 66 first appeared on Jupiter Broadcasting.

Coming up this week on the show, we’ve got something special for you! We’ll be giving you an in-depth look at all of the graphical PC-BSD utilities. That’s right, BSD doesn’t have to be command line only anymore! There’s also the usual round of answers to your emails and all the latest headlines, on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

FreeBSD foundation semi-annual newsletter

• The FreeBSD foundation published their semi-annual newsletter, complete with a letter from the president of the foundation
• “In fact after reading [the president’s] letter, I was motivated to come up with my own elevator pitch instead of the usual FreeBSD is like Linux, only better!”
• It talks about the FreeBSD journal as being one of the most exciting things they’ve launched this year, conferences they funded and various bits of sponsored code that went into -CURRENT
• The full list of funded projects is included, also with details in the financial reports
• There are also a number of conference wrap-ups: NYCBSDCon, BSDCan, AsiaBSDCon and details about the upcoming EuroBSDCon
• A new application page for travel grants to EuroBSDCon is also up

OpenBSD on an Intel NUC

• A lot of people love small form factor PCs, and we love ones that can run BSD – so does the author of this write-up
• The Intel NUC is a small, almost Mac Mini-like device that’s pretty cheap and offers some nice specs
• “The NUC has integrated Intel graphics (Intel HD Graphics 5000) which as an OpenBSD user is exactly what I wanted” – fully supported
• The post goes into detail about PXE booting the installation and talks about his experiences

BAFUG presentation videos

• A couple of talks from BAFUG, the Bay Area FreeBSD Users Group, were uploaded to YouTube
• The first talk is by Craig Rodrigues about libvirt and bhyve integration
• libvirt is a c library for interacting with various Hypervisors and virtualization technology – bhyve support was recently added
• The second is by Adrian Chadd, titled “Upcoming RSS enhancements to the FreeBSD Network Stack”
• Adrian also wrote a blog post that accompanies the video
• We need more good quality BSD presentation videos!

TLS decompression

• A new blog post from our buddy Ted Unangst](https://www.bsdnow.tv/episodes/2014_02_05-time_signatures), this time about a feature he recently removed from LibreSSL
• The original commit message was just “decompress libressl” with no details – these are the missing details of that change
• It talks about the different network layers where compression is applied and how code has to be refactored for that
• “I might download a zip file (of png files!). The web server, if configured just wrong, can apply http compression to it. If it’s https, the TLS layer can compress it again. If I’m using an SSH tunnel, that can compress it. If it’s travelling over IPsec, it can get compressed again. It can get compressed again by IP compression. How many layers of compression do we really need?”

Special segment

The PC-BSD Tour

News Roundup

Introducing pkgfs

• A new tool, pkgfs, was committed to FreeBSD -CURRENT
• It’s described as “a file system implementation for reading files out of a compressed tarball”
• Users will now be able to view pkgng packages (or any compressed tarball) just like NFS, SMB, SSHFS, etc

BSDMag’s July 2014 issue is out

• Continuing their monthly release cycle, BSD Magazine has another issue for us
• Topics include using Wireshark in a SAN environment, more GIMP image manipulation tutorials, an interview with Brett Davis about TrueNAS, an article about pkgng in DragonFlyBSD and a few other things
• The PDF is free to download, as always

A new OpenSMTPD interview

• Way back in episode three, we talked to Gilles and Eric from the OpenBSD team about OpenSMTPD
• One of the developers gave a text-only interview with a Russian website about some recent activity
• It talks about their development process, testing the code on various platforms and architectures, stress testing via the “Twitter flash mob” and a few other things

FreeBSD as a syslog server

• If you have a large number of servers, examining their logs individually is a pain
• Fortunately, you can configure them to send their logs to a dedicated system to receive them
• This blog post goes through the process of setting up the “client” systems as well as the “server” system to get all your logs in one place

Feedback/Questions

• Andre writes in
• Vincent writes in
• Callum writes in
• Stephen writes in
• John writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• If you want to come on for an interview or have a tutorial you’d like to see, let us know
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)
• An important notice: OpenBSD is moving to a new distributor in September, so between now and then is your last chance to buy any of the current shirts, CDs, mugs, posters – grab them now while you still can!

The post The PC-BSD Tour | BSD Now 49 first appeared on Jupiter Broadcasting.

Coming up this week, we’ll be showing you how to chain SSH connections, as well as some cool tricks you can do with it. Going along with that theme, we also have an interview with Bryce Chidester about running a BSD-based shell provider. News, emails and cowsay turkeys, on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

PIE and ASLR in FreeBSD update

• A status update for Shawn Webb’s ASLR and PIE work for FreeBSD
• One major part of the code, position-independent executable support, has finally been merged into the -CURRENT tree
• “FreeBSD has supported loading PIEs for a while now, but the applications in base weren’t compiled as PIEs. Given that ASLR is useless without PIE, getting base compiled with PIE support is a mandatory first step in proper ASLR support”
• If you’re running -CURRENT, just add “WITH_PIE=1” to your /etc/src.conf and /etc/make.conf
• The next step is working on the ASLR coding style and getting more developers to look through it
• Shawn will also be at EuroBSDCon (in September) giving an updated version of his BSDCan talk about ASLR

Misc. pfSense news

• Couple of pfSense news items this week, including some hardware news
• Someone’s gotta test the pfSense hardware devices before they’re sold, which involves powering them all on at least once
• To make that process faster, they’re building a controllable power board (and include some cool pics)
• There will be more info on that device a bit later on
• On Friday, June 27th, there will be another video session (for paying customers only…) about virtualized firewalls
• pfSense University, a new paid training course, was also announced
• A single two-day class costs $2000, ouch

ZFS stripe width

• A new blog post from Matt Ahrens about ZFS stripe width
• “The popularity of OpenZFS has spawned a great community of users, sysadmins, architects and developers, contributing a wealth of advice, tips and tricks, and rules of thumb on how to configure ZFS. In general, this is a great aspect of the ZFS community, but I’d like to take the opportunity to address one piece of misinformed advice”
• Matt goes through different situations where you would set up your zpool differently, each with their own advantages and disadvantages
• He covers best performance on random IOPS, best reliability, and best space efficiency use cases
• It includes a lot of detail on each one, including graphs, and addresses some misconceptions about different RAID-Z levels’ overhead factor

FreeBSD 9.3-BETA3 released

• The third BETA in the 9.3 release cycle is out, we’re slowly getting closer to the release
• This is expected to be the final BETA, next will come the RCs
• There have mostly just been small bug fixes since BETA2, but OpenSSL was also updated and the arc4random code was updated to match what’s in -CURRENT (but still isn’t using ChaCha20)
• The FreeBSD foundation has a blog post about it too
• There’s a list of changes between 9.2 and 9.3 as well, but we’ll be sure to cover it when the -RELEASE hits

Interview – Bryce Chidester – brycec@devio.us / @brycied00d

Running a BSD shell provider

Tutorial

Chaining SSH connections

News Roundup

My FreeBSD adventure

• A Slackware user from the “linux questions” forum decides to try out BSD, and documents his initial impressions and findings
• After ruling out PCBSD due to the demanding hardware requirements and NetBSD due to “politics” (whatever that means, his words) he decides to start off with FreeBSD 10, but also mentions trying OpenBSD later on
• In his forum post, he covers the documentation (and how easy it makes it for a switcher), dual booting, packages vs ports, network configuration and some other little things
• So far, he seems to really enjoy BSD and thinks that it makes a lot of sense compared to Linux
• Might be an interesting, ongoing series we can follow up on later

Even more BSDCan trip reports

• BSDCan may be over until next year, but trip reports are still pouring in
• This time we have a summary from Li-Wen Hsu, who was paid for by the FreeBSD foundation
• He’s part of the “Jenkins CI for FreeBSD” group and went to BSDCan mostly for that
• Nice long post about all of his experiences at the event, definitely worth a read
• He even talks about… the food

FreeBSD disk partitioning

• For his latest book series on FreeBSD’s GEOM system, MWL asked the hackers mailing list for some clarification
• This erupted into a very long discussion about fdisk vs gnop vs gpart
• So you don’t have to read the tons of mailing list posts, he’s summarized the findings in a blog post
• It covers MBR vs GPT, disk sector sizes and how to handle all of them with which tools

BSD Router Project version 1.51

• A new version of the BSD Router Project has been released, 1.51
• It’s now based on FreeBSD 10-STABLE instead of 10.0-RELEASE
• Includes lots of bugfixes and small updates, as well as some patches from pfSense and elsewhere
• Check the sourceforge page for the complete list of changes
• The minimum disk size requirement has increased to 512MB

Feedback/Questions

• Fongaboo writes in
• David writes in
• Kristian writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• A special thanks to our viewer Lars for writing most of today’s tutorial and sending it in
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• If you want to come on for an interview or have a tutorial you’d like to see, let us know
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)

The post Devious Methods | BSD Now 42 first appeared on Jupiter Broadcasting.

We\’re back from BSDCan! This week on the show we\’ll be chatting with Brian Callahan and Aaron Bieber about forming a local BSD users group. We\’ll get to hear their experiences of running one and maybe encourage some of you to start your own!

After that, we\’ve got a tutorial on the basics of NetBSD\’s package manager, pkgsrc. Answers to your emails and the latest headlines, on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

FreeBSD 11 goals and discussion

• Something that actually happened at BSDCan this year…
• During the FreeBSD devsummit, there was some discussion about what changes will be made in 11.0-RELEASE
• Slides from Dev Summit
• Some of MWL\’s notes include: the test suite will be merged to 10-STABLE, more work on the MIPS platforms, LLDB getting more attention, UEFI boot and install support
• A large list of possibilities was also included and open for discussion, including AES-GCM in IPSEC, ASLR, OpenMP, ICC, in-place kernel upgrades, Capsicum improvements, TCP performance improvements and A LOT more
• There\’s also some notes from the devsummit virtualization session, mostly talking about bhyve
• Lastly, he also provides some notes about ports and packages and where they\’re going

An SSH honeypot with OpenBSD and Kippo

• Everyone loves messing with script kiddies, right?
• This blog post introduces Kippo, an SSH honeypot tool, and how to use it in combination with OpenBSD
• It includes a step by step (or rather, command by command) guide and some tips for running a honeypot securely
• You can use this to get new 0day exploits or find weaknesses in your systems
• OpenBSD makes a great companion for security testing tools like this with all its exploit mitigation techniques that protect all running applications

NetBSD foundation financial report

• The NetBSD foundation has posted their 2013 financial report
• It\’s a very \”no nonsense\” page, pretty much only the hard numbers
• In 2013, they got $26,000 of income in donations
• The rest of the page shows all the details, how they spent it on hardware, consulting, conference fees, legal costs and everything else
• Be sure to donate to whichever BSDs you like and use!

Building a fully-encrypted NAS with OpenBSD

• Usually the popular choice for a NAS system is FreeNAS, or plain FreeBSD if you know what you\’re doing
• This article takes a look at the OpenBSD side and explains how to build a NAS with security in mind
• The NAS will be fully encrypted, no separate /boot partition like FreeBSD and FreeNAS require – this means the kernel itself is even protected
• The obvious trade-off is the lack of ZFS support for storage, but this is an interesting idea that would fit most people\’s needs too
• There\’s also a bit of background information on NAS systems in general, some NAS-specific security tips and even some nice graphs and pictures of the hardware – fantastic write up!

Interview – Brian Callahan & Aaron Bieber – admin@lists.nycbug.org & admin@cobug.org

Forming a local BSD Users Group

Tutorial

The basics of pkgsrc

News Roundup

FreeBSD periodic mails vs. monitoring

• If you\’ve ever been an admin for a lot of FreeBSD boxes, you\’ve probably noticed that you get a lot of email
• This page tells about all the different alert emails, cron emails and other reports you might end up getting, as well as how to manage them
• From bad SSH logins to Zabbix alerts, it all adds up quickly
• It highlights the periodic.conf file and FreeBSD\’s periodic daemon, as well as some third party monitoring tools you can use to keep track of your servers

Doing cool stuff with OpenBSD routing domains

• A blog post from our viewer and regular emailer, Kjell-Aleksander!
• He manages some internally-routed IP ranges at his work, but didn\’t want to have equipment for each separate project
• This is where OpenBSD routing domains and pf come in to save the day
• The blog post goes through the process with all the network details you could ever dream of
• He even named his networking equipment… after us

LibreSSL, the good and the bad

• We\’re all probably familiar with OpenBSD\’s fork of OpenSSL at this point
• However, \”for those of you that don\’t know it, OpenSSL is at the same time the best and most popular SSL/TLS library available, and utter junk\”
• This article talks about some of the cryptographic development challenges involved with maintaining such a massive project
• You need cryptographers, software engineers, software optimization specialists – there are a lot of roles that need to be filled
• It also mentions some OpenSSL alternatives and recent LibreSSL progress, as well as some downsides to the fork – the main one being their aim for backwards compatibility

PCBSD weekly digest

• Lots going on in PCBSD land this week, AppCafe has been redesigned
• The PBI system is being replaced with pkgng, PBIs will be automatically converted once you update
• In the more recent post, there\’s some further explanation of the PBI system and the reason for the transition
• It\’s got lots of details on the different ways to install software, so hopefully it will clear up any possible confusion
• Working on adding support for FDE with GELI using GRUB for 10.0.2
• Any devs who can grock the GRUB geli code are welcome to contact Kris

Feedback/Questions

• Antonio writes in
• Daniel writes in
• Sean writes in
• tsyn writes in
• Chris writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• If you\’ve got something cool to talk about and want to come on for an interview, shoot us an email
• Michael Lucas will be giving a live presentation next Tuesday, \”Beyond Security: Getting to Know OpenBSD’s Real Purpose\” so be sure to catch that
• Preorders for the book of PF\’s third edition are up
• We got a picture of a bunch of old FreeBSD CDs
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)

The post A BUG's Life | BSD Now 38 first appeared on Jupiter Broadcasting.

OpenBSD launches LibreSSL, but what challenges do they face? And how much progress have they made? We’ll report!

Apple is struck with its own woes, Heartbleed is used to bypass two-factor authentication, and then its a great batch of your questions and our answers!

On this week’s episode of TechSNAP!

Thanks to:

— Show Notes: —

OpenBSD launches LibreSSL

• The team behind OpenBSD has formalized their fork of OpenSSL and called it LibreSSL
• The goal is to update the coding standards, to use more modern and safer C programming practises
• The impetus for this was infact not Heartbleed, but the mitigation countermeasures discovered by OpenBSD developers before Heartbleed was found
• The way much of OpenSSL is constructed makes it harder to audit with tools like Coverient and Valgrind, and the lack of consistent style, naming etc, makes it exceptionally hard to audit by hand
• There were many bugs in the OpenSSL bug tracker that had been open for as much as 4 years and never addressed
• Bob Beck of the OpenBSD project says that most of the actual crypto code in OpenSSL is very good, as it was written by cryptographers, but a lot of the plumbing is very old and needs serious updating
• Part of the 90,000 lines of code removed in LibreSSL was the FIPS compliance module, which has not been maintained for nearly 20 years
• So far, all of the changes have been API compatible, so any application that can use OpenSSL can still use LibreSSL
• The OpenBSD Foundation is soliciting donations to continue the work on LibreSSL and develop a portable version for other operating systems
• LibreSSL site, complete with working tag

Apple fixes major SSL flaw that could have allowed an attacker to intercept data over an encrypted connection, or inject their own data into the connection

• Apple has fixed a serious security flaw that’s present in many versions of both iOS and OSX and could allow an attacker to intercept data on SSL connections. The bug is one of many that the company fixed Tuesday
• In a ‘triple handshake’ attack, it was possible for an attacker to establish two connections which had the same encryption keys and handshake, insert the attacker’s data in one connection, and renegotiate so that the connections may be forwarded to each other,” the Apple
• The vulnerability affects OS X Mountain Lion 10.8.5, OS X Mavericks 10.9.2, as well as iOS 7.1 and earlier. The bug joins a list of serious problems that have affected SSL in recent months, most notably the OpenSSL heartbleed vulnerability disclosed earlier this month.
• OSX also contains two separate vulnerabilities that could enable an attacker to bypass ASLR, one of the key exploit mitigations built into the operating system. One of the flaws is in the IOKit kernel while the other is in the OSX kernel. The IOKit kernel ASLR bypass also affects iOS 7.1 users.
• Among the other flaws Apple patched in its new releases are a number other severe vulnerabilities. For OSX Mavericks users, the two most concerning issues are a pair of buffer overflows that could lead to remote code execution. One of the bugs is in the font parser and the second is in the imageIO component. The upshot of the vulnerabilities is that opening a malicious PDF or JPEG could lead to arbitrary code execution.

Heartbleed used to defeat 2 factor authentication

• Security nightmares sparked by the Heartbleed OpenSSL vulnerability continue. According to Mandiant, now a unit of FireEye
• An attacker was able to leverage the Heartbleed vulnerability against the VPN appliance of a customer and hijack multiple active user sessions.
• The attack bypassed both the organization\’s multifactor authentication and the VPN client software used to validate that systems connecting to the VPN were owned by the organization and running specific security software.
• \”Specifically, the attacker repeatedly sent malformed heartbeat requests to the HTTPS web server running on the VPN device, which was compiled with a vulnerable version of OpenSSL, to obtain active session tokens for currently authenticated users,\” Mandiant\’s Christopher Glyer explained.
• With an active session token, the attacker successfully hijacked multiple active user sessions and convinced the VPN concentrator that he/she was legitimately authenticated.
• After connecting to the VPN, the attacker attempted to move laterally and escalate his/her privileges within the victim organization, Mandiant said.
• Additional Coverage

Feedback:

• 2 Questions for Allan and Chris

• SSL Certificate rating questions

• How does Tarsnap\’s dedupe work?

• How to protect apache httpd against ddos?

• How to protect apache httpd from (D)DoS attacks?

• Using Varnish to block DDoS or DoS

Round Up:

• North America is down to its last IPv4 address block
• Heartbleed used to steal SSL private key from Swedish VPN provider mullvad
• ICS-CERT issues advisory about heartbleed vulnerabilities in siemens SCADA/ICS gear
• Healthcare.gov preventatively resets all passwords
• F.B.I. Informant Is Tied to Cyberattacks Abroad
• Heartbleed highlights contradicition of the web
• Intel\’s next-gen Thunderbolt rumored to hit 40Gbps transfer speeds with new connector
• The value of, and problems with, CRLs and OCSP
• Google is working on end-to-end encryption for Gmail
• Java fixes critical SSL flaws

The post Heartbleed Fallout | TechSNAP 160 first appeared on Jupiter Broadcasting.

We sit down with Jim Brown from the BSD Certification group to talk about the BSD exams. Following that, we\’ll be showing you how to build OpenBSD binary packages in bulk, a la poudriere. There\’s a boatload of news and we\’ve got answers to your questions, coming up on BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

BSDCan schedule, speakers and talks

• This year\’s BSDCan will kick off on May 14th in Ottawa
• The list of speakers is also out
• And finally the talks everyone\’s looking forward to
• Lots of great tutorials and talks, spanning a wide range of topics of interest
• Be sure to come by so you can and meet Allan and Kris in person and get BSDCan shirts

NYCBSDCon talks uploaded

• The BSD TV YouTube channel has been uploading recordings from the 2014 NYCBSDCon
• Jeff Rizzo\’s talk, \”Releasing NetBSD: So Many Targets, So Little Time\”
• Dru Lavigne\’s talk, \”ZFS Management Tools in FreeNAS and PC-BSD\”
• Scott Long\’s talk, \”Serving one third of the Internet via FreeBSD\”
• Michael W. Lucas\’ talk, \”BSD Breaking Barriers\”

FreeBSD Journal, issue 2

• The bi-monthly FreeBSD journal\’s second issue is out
• Topics in this issue include pkg, poudriere, the PBI format, hwpmc and journaled soft-updates
• In less than two months, they\’ve already gotten over 1000 subscribers! It\’s available on Google Play, iTunes, Amazon, etc
• \”We are also working on a dynamic version of the magazine that can be read in many web browsers, including those that run on FreeBSD\”
• Check our interview with GNN for more information about the journal

OpenSSL, more like OpenSS-Hell

• We mentioned this huge OpenSSL bug last week during all the chaos, but the aftermath is just as messy
• There\’s been a pretty vicious response from security experts all across the internet and in all of the BSD projects – and rightfully so
• We finally have a timeline of events
• Reactions from ISC, PCBSD, Tarsnap, the Tor project, FreeBSD, NetBSD, oss-sec, PHK, Varnish and Akamai
• pfSense released a new version to fix it
• OpenBSD disabled heartbeat entirely and is very unforgiving of the IETF
• Ted Unangst has two good write-ups about the issue and how horrible the OpenSSL codebase is
• A nice quote from one of the OpenBSD lists: \”Given how trivial one-liner fixes such as #2569 have remained unfixed for 2.5+ years, one can only assume that OpenSSL\’s bug tracker is only used to park bugs, not fix them\”
• Sounds like someone else was having fun with the bug for a while too
• There\’s also another OpenSSL bug that\’s possibly worse that OpenBSD patched – it allows an attacker to inject data from one connection into another
• OpenBSD has also imported the most current version of OpenSSL and are ripping it apart from the inside out – we\’re seeing a fork in real time (over 55000 lines of code removed as of yesterday evening)

Interview – Jim Brown – info@bsdcertification.org

The BSD Certification exams

Tutorial

Building OpenBSD binary packages in bulk

News Roundup

Portable signify

• Back in episode 23 we talked with Ted Unangst about the new \”signify\” tool in OpenBSD
• Now there\’s a (completely unofficial) portable version of it on github
• If you want to verify your OpenBSD sets ahead of time on another OS, this tool should let you do it
• Maybe other BSD projects can adopt it as a replacement for gpg and incorporate it into their base systems

Foundation goals and updates

• The OpenBSD foundation has reached their 2014 goal of $150,000
• You can check their activities and goals to see where the money is going
• Remember that funding also goes to OpenSSH, which EVERY system uses and relies on everyday to protect their data
• The FreeBSD foundation has kicked off their spring fundraising campaign
• There\’s also a list of their activities and goals available to read through
• Be sure to support your favorite BSD, whichever one, so they can continue to make and improve great software that powers the whole internet

PCBSD weekly digest

• New PBI runtime that fixes stability issues and decreases load times
• \”Update Center\” is getting a lot of development and improvements
• Lots of misc. bug fixes and updates

Feedback/Questions

• There\’s a reddit thread we wanted to highlight – a user wants to show his friend BSD and why it\’s great
• Brad writes in
• Sha\’ul writes in
• iGibbs writes in
• Matt writes in

• All the tutorials are posted in their entirety at bsdnow.tv – there\’s a couple new ones on the site now that we\’ll be covering in future episodes
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• If you\’ve got something cool to talk about and want to come on for an interview, shoot us an email
• Also if you have any tutorial requests, we\’d be glad to show whatever the viewers want to see
• If you\’re in or around Colorado in the US, there\’s a brand new BSD users group that was just formed and announced – they\’ll be having meetings and doing tutorials, so check out their site (also, if you have a local BUG, let us know!)
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)

The post Certified Package Delivery | BSD Now 33 first appeared on Jupiter Broadcasting.

We chat with Warren Block to discuss BSD documentation efforts and future plans. If you\’ve ever wondered about the scary world of mailing lists, today\’s tutorial will show you the basics of how to get help and contribute back. There\’s lots to get to today, so sit back and enjoy some BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

OpenBSD on a Sun T5120

• Our buddy Ted Unangst got himself a cool Sun box
• Of course he had to write a post about installing and running OpenBSD on it
• The post goes through some of the quirks and steps to go through in case you\’re interested in one of these fine SPARC machines
• He\’s also got another post about OpenBSD on a Dell CS24-SC server

Bhyvecon 2014 videos are up

• Like we mentioned last week, Bhyvecon was an almost-impromptu conference before AsiaBSDCon
• The talks have apparently already been uploaded!
• Subjects include Bhyve\’s past, present and future, OSv on Bhyve, a general introduction to the tool, migrating those last few pesky Linux boxes to virtualization
• Lots more detail in the videos, so check \’em all out

Building a FreeBSD wireless access point

• We\’ve got a new blog post about creating a wireless access point with FreeBSD
• After all the recent news of consumer routers being pwned like candy, it\’s time for people to start building BSD routers
• The author goes through a lot of the process of getting one set up using good ol\’ FreeBSD
• Using hostapd, he\’s able to share his wireless card in hostap mode and offer DHCP to all the clients
• Plenty of config files and more messy details in the post

Switching from Synology to FreeNAS

• The author has been considering getting a NAS for quite a while and documents his research
• He was faced with the compromise of convenience vs. flexibility – prebuilt or DIY
• After seeing the potential security issues with proprietary NAS devices, and dealing with frustration with trying to get bugs fixed, he makes the right choice
• The post also goes into some detail about his setup, all the things he needed a NAS to do as well as all the advantages an open source solution would give
• Speaking of FreeNAS…

This episode was brought to you by

Interview – Warren Block – wblock@freebsd.org

FreeBSD\’s documentation project, igor, doceng

Tutorial

The world of BSD mailing lists

News Roundup

HAMMER2 work and notes

• Matthew Dillon has posted some updated notes about the development of the new HAMMER version
• The start of a cluster API was committed to the tree
• There are also links to design document, a freemap design document, that should be signed with a digital signing software from the
  sodapdf esign site

BSD Breaking Barriers

• Our friend MWL gave a talk at NYCBSDCon about BSD \”breaking barriers\”
• \”What makes the BSD operating systems special? Why should you deploy your applications on BSD? Why does the BSD community keep growing, and why do Linux sites like DistroWatch say that BSD is where the interesting development work is happening? We\’ll cover the not-so-obvious reasons why BSD still stands tall after almost 40 years.\”
• He also has another upcoming talk, (or \”webcast\”) called \”Beyond Security: Getting to Know OpenBSD\’s Real Purpose\”
• \”OpenBSD is frequently billed as a high-security operating system. That\’s true, but security isn\’t the OpenBSD Project\’s main goal. This webcast will introduce systems administrators to OpenBSD, explain the project\’s mission, and discuss the features and benefits.\”
• It\’s on May 27th and will hopefully be recorded

FreeBSD in a chroot

• Finch, \”FreeBSD running IN a CHroot,\” is a new project
• It\’s a way to extend the functionality of restricted USB-based FreeBSD systems (FreeNAS, etc.)
• All the details and some interesting use cases are on the github page
• He really needs to change the project name though

PCBSD weekly digest

• Lots of bugfixes for PCBSD coming down the tubes
• LZ4 compression is now enabled by default on the whole pool
• The latest 10-STABLE has been imported and builds are going
• Also the latest GNOME and Cinnamon builds have been imported and much more

Feedback/Questions

• Bostjan writes in (IRC suggests md5deep)
• Don writes in
• kaltheat writes in (We use R0DE Podcast microphones and Logitech C920 HD webcams)
• Harri writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)
• We wanted to give the Bay Area FreeBSD Users Group a special mention, if you\’re in the San Francisco Bay Area, there\’s a very healthy BSD community there and they regularly have meet-ups
• If you listened to the audio-only version of this week\’s episode, you\’re really missing out on Warren\’s fun animations in the interview!

The post Documentation is King | BSD Now 30 first appeared on Jupiter Broadcasting.

We\’ll be talking with Ted Unangst of the OpenBSD team about their new signing infrastructure. After that, we\’ve got a tutorial on how to run your own NTP server. News, your feedback and even… the winner of our tutorial contest! It\’s a big show, so stay tuned to BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

FreeBSD foundation\’s 2013 fundraising results

• The FreeBSD foundation finally counted all the money they made in 2013
• $768,562 from 1659 donors
• Nice little blog post from the team with a giant beastie picture
• \”We have already started our 2014 fundraising efforts. As of the end of January we are just under $40,000. Our goal is to raise $1,000,000. We are currently finalizing our 2014 budget. We plan to publish both our 2013 financial report and our 2014 budget soon.\”
• A special thanks to all the BSD Now listeners that contributed, the foundation was really glad that we sent some people their way (and they mentioned us on Facebook)

OpenSSH 6.5 released

• We mentioned the CFT last week, and it\’s finally here!
• New key exchange using elliptic-curve Diffie Hellman in Daniel Bernstein\’s Curve25519 (now the default when both clients support it)
• Ed25519 public keys are now available for host keys and user keys, considered more secure than DSA and ECDSA
• Funny side effect: if you ONLY enable ed25519 host keys, all the compromised Linux boxes can\’t even attempt to login
• New bcrypt private key type, 500,000,000 times harder to brute force
• Chacha20-poly1305 transport cipher that builds an encrypted and authenticated stream in one
• Portable version already in FreeBSD -CURRENT, and ports
• Lots more bugfixes and features, see the full release note or our interview with Damien
• Work has already started on 6.6, which can be used without OpenSSL!

Crazed Ferrets in a Berkeley Shower

• In 2000, MWL wrote an essay for linux.com about why he uses the BSD license: \”It’s actually stood up fairly well to the test of time, but it’s fourteen years old now.\”
• This is basically an updated version about why he uses the BSD license, in response to recent idiocy from Richard Stallman
• Very nice post that gives some history about Berkeley, the basics of the BSD-style licenses and their contrast to the GNU GPL
• Check out the full post if you\’re one of those people that gets into license arguments
• The takeaway is \”BSD is about making the world a better place. For everyone.\”

OpenBSD on BeagleBone Black

• Beaglebone Blacks are cheap little ARM devices similar to a Raspberry Pi
• A blog post about installing OpenBSD on a BBB from.. our guest for today!
• He describes it as \”everything I wish I knew before installing the newly renamed armv7 port on a BeagleBone Black\”
• It goes through the whole process, details different storage options and some workarounds
• Could be a really fun weekend project if you\’re interested in small or embedded devices

This episode was brought to you by

Interview – Ted Unangst – tedu@openbsd.org / @tedunangst

OpenBSD\’s signify infrastructure

Tutorial

Running an NTP server

News Roundup

Getting started with FreeBSD

• A new video and blog series about starting out with FreeBSD
• The author has been a fan since the 90s and has installed it on every server he\’s worked with
• He mentioned some of the advantages of BSD over Linux and how to approach explaining them to new users
• The first video is the installation, then he goes on to packages and other topics – 4 videos so far

More OpenBSD hackathon reports

• As a followup to last week, this time Kenneth Westerback writes about his NZ hackathon experience
• He arrived with two goals: disklabel fixes for drives with 4k sectors and some dhclient work
• This summary goes into detail about all the stuff he got done there

X11 in a jail

• We\’ve gotten at least one feedback email about running X in a jail Well.. with this commit, looks like now you can!
• A new tunable option will let jails access /dev/kmem and similar device nodes
• Along with a change to DRM, this allows full X11 in a jail
• Be sure to check out our jail tutorial and jailed VNC tutorial for ideas
• Ongoing Discussion

PCBSD weekly digest

• 10.0 \”Joule Edition\” finally released!
• AMD graphics are now officially supported
• GNOME3, MATE and Cinnamon desktops are available
• PCBSD also got a mention in eweek

Feedback/Questions

• Justin writes in: https://slexy.org/view/s21VnbKZsH
• Daniel writes in: https://slexy.org/view/s2nD7RF6bo
• Martin writes in: https://slexy.org/view/s2jwRrj7UV
• Alex writes in: https://slexy.org/view/s201koMD2c
  + unofficial FreeBSD RPI Images
• James writes in: https://slexy.org/view/s2AntZmtRU
• John writes in: https://slexy.org/view/s20bGjMsIQ

• All the tutorials are posted in their entirety at bsdnow.tv
• The ssh tutorial has been updated with some new 6.5 stuff
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• Watch live Wednesdays at 2:00PM Eastern (19:00 UTC)
• Reminder: if you\’re on FreeBSD 8.3 for some reason, upgrade soon – it\’s reaching EOL
• Reminder: if you\’re using pkgng, be sure to update to 1.2.6 for a security issue
• The winner of the tutorial contest is… Dusko! We didn\’t get as many submissions as we wanted, but his Nagios monitoring tutorial was extremely well-done. It\’ll be featured in a future episode. Congrats! Send us a picture when it arrives.
• Allan got his pillow in the mail as well, it\’s super awesome

The post Time Signatures | BSD Now 23 first appeared on Jupiter Broadcasting.

We\’ll be showing you how to do a fully-encrypted installation of FreeBSD and OpenBSD. We also have an interview with Damien Miller – one of the lead developers of OpenSSH – about some recent crypto changes in the project. If you\’re into data security, today\’s the show for you. The latest news and all your burning questions answered, right here on BSD Now – the place to B.. SD.

Thanks to:

• iXsystems: This is what 80 cores and 1TB of RAM looks like!

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

Secure communications with OpenBSD and OpenVPN

• Starting off today\’s theme of encryption…
• A new blog series about combining OpenBSD and OpenVPN to secure your internet traffic
• Part 1 covers installing OpenBSD with full disk encryption (which we\’ll be doing later on in the show)
• Part 2 covers the initial setup of OpenVPN certificates and keys
• Parts 3 and 4 are the OpenVPN server and client configuration
• Part 5 is some updates and closing remarks

FreeBSD Foundation Newsletter

• The December 2013 semi-annual newsletter was sent out from the foundation
• In the newsletter you will find the president\’s letter, articles on the current development projects they sponsor and reports from all the conferences and summits they sponsored
• The president\’s letter alone is worth the read, really amazing
• Really long, with lots of details and stories from the conferences and projects

Use of NetBSD with Marvell Kirkwood Processors

• Article that gives a brief history of NetBSD and how to use it on an IP-Plug computer
• The IP-Plug is a \”multi-functional mini-server was developed by Promwad engineers by the order of AK-Systems. It is designed for solving a wide range of tasks in IP networks and can perform the functions of a computer or a server. The IP-Plug is powered from a 220V network and has low power consumption, as well as a small size (which can be compared to the size of a mobile phone charger).\”
• Really cool little NetBSD ARM project with lots of graphs, pictures and details

Experimenting with zero-copy network IO

• Long blog post from Adrian Chad about zero-copy network IO on FreeBSD
• Discusses the different OS\’ implementations and options
• He\’s able to get 35 gbit/sec out of 70,000 active TCP sockets, but isn\’t stopping there
• Tons of details, check the full post

Interview – Damien Miller – djm@openbsd.org / @damienmiller

Cryptography in OpenBSD and OpenSSH

Full disk encryption in FreeBSD & OpenBSD

• Shows how to install both FreeBSD and OpenBSD with full disk encryption
• We\’ll be using geli and bioctl and doing it step by step

News Roundup

OpenZFS office hours

• Our buddy George Wilson sat down to take some ZFS questions from the community
• You can see more info about it here

License summaries in pkgng

• A discussion between Justin Sherill and some NYCBUG guys about license frameworks in pkgng
• Similar to pkgsrc\’s \”ACCEPTABLE_LICENSES\” setting, pkgng could let the user decide which software licenses he wants to allow
• Maybe we could get a \”pkg licenses\” command to display the license of all installed packages
• Ok bapt, do it

The post Cryptocrystalline | BSD Now 16 first appeared on Jupiter Broadcasting.

This week we\’ll be talking to Amitai Schlair of the NetBSD foundation about pkgsrc, NetBSD\’s future plans and much more. After that, if you\’ve ever wondered what all this SSH stuff is about, today\’s tutorial has got you covered. We\’ll be showing you the basics of SSH, as well as how to combine it with tmux for persistent sessions. News, feedback and everything else, right here on BSD Now – the place to B.. SD.

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

Headlines

Faces of FreeBSD

• The FreeBSD foundation is publishing articles on different FreeBSD developers
• This one is about Colin Percival (cperciva@), the ex-security officer
• Tells the story of how he first found BSD, what he contributed back, how he eventually became the security officer
• Running series with more to come

Lots of BSD presentation videos uploaded

• EuroBSDCon 2013 dev summit videos, AsiaBSDCon 2013 videos, MWL\’s presentation video
• Most of us never get to see the dev summit talks since they\’re only for developers
• AsiaBSDCon 2013 videos also up finally
• List of AsiaBSDCon presentation topics here
• Our buddy Michael W Lucas gave an \”OpenBSD for Linux users\” talk at a Michigan Unix Users Group.
• He says \”Among other things, I compare OpenBSD to Richard Stallman and physically assault an audience member. We also talk long long time, memory randomization, PF, BSD license versus GPL, Microsoft and other OpenBSD stuff\”
• Really informative presentation, pretty long, answers some common questions at the end

Call for Presentations: FOSDEM 2014 and NYCBSDCon 2014

• FOSDEM 2014 will take place on 1–2 February, 2014, in Brussels, Belgium
• Just like in the last years, there will be both a BSD booth and a developer\’s room
• The topics of the devroom include all BSD operating systems. Every talk is welcome, from internal hacker discussion to real-world examples and presentations about new and shiny features.
• If you are in the area or want to go, check the show notes for details
• NYCBSDCon is also accepting papers.
• It\’ll be in New York City at the beginning of February 2014
• If anyone wants to give a talk at one of these conferences, go ahead and send in your stuff!

FreeBSD foundation\’s year-end fundraising campaign

• The FreeBSD foundation has been supporting the FreeBSD project and community for over 13 years
• As of today they have raised about half a million dollars, but still have a while to go
• Donations go towards new features, paying for the server infrastructure, conferences, supporting the community, hiring full-time staff members and promoting FreeBSD at events
• They are preparing the debut of a new online magazine, the FreeBSD Journal
• Typically big companies make their huge donations in December, like a couple of anonymous donors that gave around $250,000 each last year
• Make your donation today over at freebsdfoundation.org, every little bit helps
• Everyone involved with BSD Now made a donation last year and will do so again this year

Interview – Amitai Schlair – schmonz@netbsd.org / @schmonz

• The NetBSD Foundation, pkgsrc, future plans
• Can you start off by telling us a little bit about who you are and how you got involved with BSD in general?
• What are all your roles with the NetBSD project? What \”hats\” do you wear?
• What kind of tasks are assigned to the foundation? What does being on the board entail?
• Since you\’re also very involved with pkgsrc, could you give us a brief overview of what pkgsrc is, and how it compares to something like ports?
• What\’s planned for the next big release of NetBSD, and when can we expect it?
• In what ways do you personally use NetBSD? Desktops, servers, toasters? All of the above?
• If some of our listeners want to get involved with NetBSD and pkgsrc, where would you recommend they go to help out?
• How can people find you? Anything else you\’d like to mention?
• https://twitter.com/schmonz

Tutorial

A guide to SSH and tmux

• OpenSSH and tmux, a match made in heaven
• This guide shows how to do basic tasks with SSH
• Persistent sessions with tmux increase productivity

News Roundup

PS4 released

• Sony\’s Playstation 4 is finally released
• As previously thought, its OS is heavily based on FreeBSD and uses the kernel among other things
• Link in the show notes contains the full list of BSD software they\’re using
• Always good to see BSD being so widespread

BSD Mag November issue

• Free monthly BSD magazine publishes another issue
• This time their topics include: Configuring a Highly Available Service on FreeBSD, IT Inventory & Asset Management Automation, more FreeBSD Programming Primer, PfSense and Snort and a few others
• PDF linked in the show notes

pbulk builds made easy

• NetBSD\’s pbulk tool is similar to poudriere, but for pkgsrc
• While working on updating the documentation, a developer cleaned up quite a lot of code
• He wrote a script that automates pbulk deployment and setup
• The whole setup of a dedicated machine has been reduced to just three commands

PCBSD weekly digest

• Over 200 PBIs have been populated in to the PC-BSD 10 Stable Appcafe
• Many PC-BSD programs received some necessary bug fixes and updates
• Some include network detection in the package and update managers, nvidia graphic detection, security updates for PCDM

Feedback/Questions

• Peter writes in: https://slexy.org/view/s21oh3vP7t
• Kjell-Aleksander writes in: https://slexy.org/view/s21zfqcWMP
• Jordan writes in: https://slexy.org/view/s2ZmW77Odb
• Christian writes in: https://slexy.org/view/s2BZq7xiyo
• entransic writes in: https://slexy.org/view/s21xrk0M4k

• All the tutorials are posted in their entirety at bsdnow.tv
• Send questions, comments, show ideas/topics, etc to feedback@bsdnow.tv
• Watch live Wednesdays at 2:00PM Eastern (19:00 UTC)

The post Collecting SSHells | BSD Now 12 first appeared on Jupiter Broadcasting.