Tuesday, November 25, 2014

BSD News 24/11/2014

Last week  in BSD
Releases: NetBSD, FreeNAS, PC-BSD
Other news:  BSDSec, PC-BSD, TrueOS, FreeBSD Foundation, DragonFly BSD, OpenBSD, HardenedBSD, Lumina Desktop, NetBSD, freeNAS, BSDnow, BSDTalk


Releases

NetBSD 5.1.5 and 5.2.3 released  

The NetBSD Project is pleased to announce NetBSD 5.1.5, the fifth security/bugfix update of the NetBSD 5.1 release branch, and NetBSD 5.2.3, the third security/bugfix update of the NetBSD 5.2 release branch. They represent a selected subset of fixes deemed important for security or stability reasons, and if you are running a prior release of either branch, we strongly suggest that you update to one of these releases.

 For more details, please see the release notes at: http://www.NetBSD.org/releases/formal-5/NetBSD-5.1.5.html http://www.NetBSD.org/releases/formal-5/NetBSD-5.2.3.html Complete source and binaries for NetBSD are available for download at many sites around the world. A list of download sites providing FTP, AnonCVS, SUP, and other services may be found at: http://www.NetBSD.org/mirrors/

 As a reminder and warning, the upcoming release of NetBSD 7.0 will bring about the end of support for the following branches: - netbsd-5 - netbsd-5-1 - netbsd-5-2 As in the past, we will provide a grace period of a month, but now is a good time to start thinking about your upgrade paths. 

PC-BSD 10.1-RELEASE


PC-BSD 10.1 Highlights
* KDE 4.14.2
* GNOME 3.12.2
* Cinnamon 2.2.16
* Chromium 38.0.2125.104_1
* Firefox 33.1
* NVIDIA Driver 340.24
* Lumina desktop 0.7.1-beta
* Pkg 1.3.8_3
* New AppCafe HTML5 web/remote interface, for both desktop / server usage
* New CD-sized text-installer ISO files for TrueOS / server deployments
* New Centos 6.6 Linux emulation base
* New HostAP mode for Wifi GUI utilities
* UEFI support for boot and installation
* Automatic tuning of ZFS memory usage at install time
* Support for full-disk (GELI) encryption without an unencrypted /boot partition (Also on mirror/raidz setups!)
* New VirtualBox / VMware / RAW disk images of desktop / server installations
For a more complete list of changes, please check our wiki page.

TrueOS
Along with our traditional PC-BSD DVD ISO image, we have also created a CD-sized ISO image of TrueOS, our server edition.
This is a text-based installer which includes FreeBSD 10.1-Release under the hood. It includes the following features:
* ZFS on Root installation
* Boot-Environment support
* Command-Line versions of PC-BSD utilities, such as Warden, Life-Preserver and more.
* Support for enabling the AppCafe web-interface for remote usage out of box
* Support for full-disk (GELI) encryption without an unencrypted /boot partition  (Also on mirror/raidz setups!)

FreeNAS 9.2.1.9 is now available 



Please get it from the usual place: http://www.freenas.org/download/
This should, knock on wood, be the very last release on the 9.2.1-BRANCH and also the last 32 bit version of FreeNAS, so if you’ve got some older hardware you just have to keep using, this is the release to run!
Please see  https://bugs.freenas.org/projects/freenas/issues?query_id=104 for all bugs addressed in this release, though the list is very short:
  • Fix a bug preventing Directory Server mode from working.
  • Fix a memory leak in ZFS that is triggered by having a compressed dataset and an L2ARC device.
  • Preserve the Samba SID across reboots and upgrades.
  • Fix two problems in the config file generator for CTL:
    1. Unbreak device extents when using physical devices or multi path devices.
    2. Unbreak the case when target auth or discover auth is set to Auto.
  • Fix a priviledge escalation issue.
  • Save debug now includes the output of zpool history.



BSDSec.net
relayd errata Nov 17 
pfctl errata Nov 17 
gethostbyname errata 
httpd errata 


Other news

Updated! - FreeBSD Foundation Announces Generous Donation and Fundraising Milestone 

The FreeBSD Foundation is pleased to announce it has received a $1,000,000 donation from Jan Koum, CEO and Co-Founder of WhatsApp. This marks the largest single donation to the Foundation since its inception almost 15 years ago, and serves as another example of someone using FreeBSD to great success and then giving back to the community.  

The following contains the full text from Jan's Facebook post on 11/17/2014:

Last week, I donated one million dollars to the FreeBSD Foundation, which supports the open source operating system that has helped millions of programmers pursue their passions and bring their ideas to life.
I’m actually one of those people. I started using FreeBSD in the late 90s, when I didn’t have much money and was living in government housing. In a way, FreeBSD helped lift me out of poverty – one of the main reasons I got a job at Yahoo! is because they were using FreeBSD, and it was my operating system of choice. Years later, when Brian and I set out to build WhatsApp, we used FreeBSD to keep our servers running. We still do.
I’m announcing this donation to shine a light on the good work being done by the FreeBSD Foundation, with the hope that others will also help move this project forward. We’ll all benefit if FreeBSD can continue to give people the same opportunity it gave me – if it can lift more immigrant kids out of poverty, and help more startups build something successful, and even transformative.
 --Jan Koum

 bsdtalk248 - DragonFlyBSD with Matthew Dillon

An interview with Matthew Dillon about the upcoming 4.0 release of DragonFly BSD. File Info: 43Min, 20MB.

Ogg Link: https://archive.org/download/bsdtalk248/bsdtalk248.ogg


Rump Kernels Revisited | BSD Now 64


This time on the show, we'll be talking with Justin Cormack about NetBSD rump kernels. We'll learn how to run them on other operating systems, what's planned for the future and a lot more. As always, answers to viewer-submitted questions and all the news for the week, on BSD Now - the place to B.. SD.


Code stuff
DragonFlyBSD: Old USB out, new USB in 
OpenBSD: Perl Updated to 5.20.1 
HardenedBSD: a.out And NULL Mapping Support Removal
Lumina Version 0.7.2 Tagged 
Call for Testing: 64-bit PCI Bridge Support
In Other BSDs for 2014/11/22 

Interesting articles

So they sent me a CI20
… mmm emulators.
More information on PC-BSD’s new Role System

Tuesday, November 18, 2014

BSD News 17/11/2014

Last week in BSD
Releases: DragonFlyBSD, FreeBSD, FreeNAS
Other news:freeNAS, OpenBSD, PC-BSD, BSDnow, DragonFly BSD, TrueOS, BSDMag, BSDTalk

Releases

FreeNAS 9.3-BETA

 This FreeNAS update is a significant evolutionary step from previous FreeNAS releases.  It features a simplified and reorganized Web User Interface, support for Windows 2012 clustering, better integration with VMWare, a new and more secure update system with roll-back functionality, and hundreds of other technology enhancements.

DragonFly 4.0 RC2 tagged  
No, wait, RC3   ( DragonFly 4.0.0RC3 images )


FreeBSD 10.1-RELEASE

Some of the highlights:
  • The new console driver, vt(4), has been added.
  • Support for FreeBSD/i386 guests has been added to bhyve(4).
  • The bhyve(4) hypervisor now supports booting from a zfs(8) filesystem.
  • Support for SMP was added to the armv6 kernels and enabled by default in the configuration files for all platforms that contain multi-core CPUs.
  • Initial support for UEFI boot has been added for the FreeBSD/amd64 architecture.
  • Support has been added to cache geli(8) passphrases during system boot.
  • Support for the UDP-Lite protocol (RFC 3828) has been added to the IPv4 and IPv6 stacks.
  • The new filesystem automount facility, autofs(5), has been merged from FreeBSD-CURRENT.
  • The sshd(8) rc.d(8) startup script now generates ED25519 sshd(8) host keys if keys do not already exist when ssh_keygen_alg() is invoked.
  • OpenSSH has been updated to version 6.6p1.
  • The nc(1) utility has been updated to match the version in OpenBSD 5.5.
  • Sendmail has been updated to 8.14.9.
  • The unbound(8) caching resolver and ldns have been updated to version 1.4.22.
  • OpenPAM has been updated to Ourouparia (20140912).
  • OpenSSL has been updated to version 1.0.1j.
  • The pkg(8) package management utility has been updated to version 1.3.8.
For a complete list of new features and known problems, please see the online release notes and errata list, available at:


Other news

BSDMag – HardenedBSD  

Let’s take a look at what you will read in this issue of BSD. First, our experts will instruct you on how to install and configure a dedicated web server. Afterwards, we will head to our series of 100+ Unix Commands and Find out About System Configuration. Last but not least, we will learn all […]

A Man's man | BSD Now 63 


This time on the show, we've got an interview with Kristaps Džonsons, the creator of mandoc. He tells us how the project got started and what its current status is across the various BSDs. We also have a mini-tutorial on using PF to throttle bandwidth. This week's news, answers to your emails and even some cheesy mailing list gold, coming up on BSD Now - the place to B.. SD.

bsdtalk247 - FreeBSD: The Next 10 Years with Jordan Hubbard

A recording from MeetBSD 2014 in California.  A talk by Jordan Hubbard titled "FreeBSD: The Next 10 Years."File Info: 39Min, 18MB.

Ogg Link: https://archive.org/download/bsdtalk247/bsdtalk247.ogg



Code stuff
BSDFan, a simple fan control utility for ThinkPads 

Need community feedback on new role system for PC-BSD 
USB 3.0 Enabled in -current 
reapctl() added to DragonFly 
A DRM speedup 
In Other BSDs for 2014/11/15


Interesting articles

Mount a harddisk, change password, and set default gateway in FreeBSD

Tuesday, November 11, 2014

BSD News 10/11/2014

Last week in BSD

Last 2 weeks I've been out as I moved back from India to Slovakia. My intership ended there, I am am happy top be back in Europe. More than 2 years in Asia, so yeah ;] All seems magical now, but let's get back to BSD.

BSDSec.net
NetBSD Security Advisory 2014-013: ftp(1) can be made to execute arbitrary commands by a malicious webserver
NetBSD Security Advisory 2014-014: Multiple vulnerabilities in the mount system call 
NetBSD Security Advisory 2014-015: OpenSSL and SSLv3 vulnerabilities 
 [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-14:24.sshd
[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-14:25.setlogin 
[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-14:25.setlogin 
[FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-14:24.sshd [REVISED] 

Other news

Chrome on DragonFly 

Chrome runs on DragonFly now, apparently possible now because of this ported fix from Joris Giovannangeli.

Happy 10th Birthday to pfSense! 


Ten years ago today, the pfsense.org(com/net) domains were first registered, marking the birth of the project as we know it. We began on a server named “projectx” a few months prior, going public after settling on a name on November 5, 2004. We’ve come incredibly far since then, having grown to one of the most widely used network firewall distributions in the world, with every metric we can count continuing to grow further.
Thanks to everyone who’s made the past decade possible. The best is yet to come!



Gift from the Sun | BSD Now 62   


We're away at MeetBSD this week, but we've still got a great show for you. We'll be joined by Pawel Dawidek, who's done quite a lot of things in FreeBSD over the years, including the initial ZFS port. We'll get to hear how that came about, what he's up to now and a whole lot more. We'll be back next week with a normal episode of BSD Now - the place to B.. SD.


Code stuff
DragonFly 4.0 status 
More USB ethernet drivers 
Two more network options for DragonFly
ARM multiprocessor support for NetBSD  
Improving bcd(6) for OpenBSD
In Other BSDs for 2014/11/08 

Interesting articles

Getting to know your portmgr-lurker: ak@ 
Getting to know your portmgr-lurker: ehaupt@ 

Tuesday, October 28, 2014

BSD News 27/10/2014

Last week in BSD
Releases: FreeBSD, PC-BSD
Other news:  FreeBSD, PC-BSD, BSDSec, BSDnow, OpenBSD, DragonFly BSD, EuroBSDCon, kde,


Releases

FreeBSD 10.1-RC3 Now Available 

Changes between 10.1-RC2 and 10.1-RC3 include:
  • Several fixes to the UDPLite protocol implementation.
  • The vt(4) driver has been updated to save and restore keyboard mode and LED states when switching windows.
  • Several fixes to the SCTP protocol implementation.
  • A potential race condition in obtaining a file pointer has been corrected.
  • Fix ZFS ZVOL deadlock and rename issues.
  • Restore libopie.so ABI compatibility with 10.0-RELEASE.
  • Removed the last vestige of MD5 password hashes.
  • Several rc(8) script updates and fixes.
  • bsdinstall(8) has been updated to allow selecting local_unbound in the default services to enable at first boot.
  • Prevent ZFS leaking pool free space.
  • Fix rtsold(8) remote buffer overflow vulnerability. [SA-14:20]
  • Fix routed(8) remote denial of service vulnerability. [SA-14:21]
  • Fix memory leak in sandboxed namei lookup. [SA-14:22]
  • OpenSSL has been updated to version 1.0.1j. [SA-14:23]
  • Fix an issue where a FreeBSD virtual machine provisioned in the Microsoft Azure service does not recognize the second attached disk on the system.
Pre-installed virtual machine images for 10.1-RC3 are also available for amd64 and i386 architectures.

PC-BSD 10.1-RC1 Released 


PC-BSD Notable Changes
* KDE 4.14.2
* GNOME 3.12.2
* Cinnamon 2.2.16
* Chromium 38.0.2125.104_1
* Firefox 33.0
* NVIDIA Driver 340.24
* Lumina desktop 0.7.0-beta
* Pkg 1.3.8_3
* New AppCafe HTML5 web/remote interface, for both desktop / server usage
* New CD-sized text-installer ISO files for TrueOS / server deployments
* New Centos 6.5 Linux emulation base
* New HostAP mode for Wifi GUI utilities
* Misc bug fixes and other stability improvements




BSDSec
OpenSSL errata Oct 20 
kernexec errata Oct 20 
errata patch to disble sslv3 
FreeBSD Security Advisory FreeBSD-SA-14:20.rtsold 
FreeBSD Security Advisory FreeBSD-SA-14:21.routed 
FreeBSD Security Advisory FreeBSD-SA-14:22.namei 
FreeBSD Security Advisory FreeBSD-SA-14:23.openssl


Other news

Don't Buy a Router | BSD Now 60 

This week on the show we're joined by Olivier Cochard-Labbé, the creator of both FreeNAS and the BSD Router Project! We'll be discussing what the BSD Router Project is, what it's for and where it's going. All this week's headlines and answers to viewer-submitted questions, on BSD Now - the place to B.. SD. 

The Book of PF 3rd ed Is Out, Win First Signed Copy by Donating to OpenBSD! 

As you may have heard elsewhere, The Book of PF is out in its third edition. Now author Peter Hansteen has received his author copies, and he has teamed up with the OpenBSD Foundation to auction off the first ever signed copy of the book.

More details are to be found over at Peter's blog, but the main item is that the first physical copy of the new edition ever touched by and subsequently signed by its author is up on an ebay auction where all proceeds will go to the OpenBSD Foundation. For unsuccessful bidders, Peter urges them to donate the amount of their highest bid to the OpenBSD Foundation.

Code stuff
 led(4) for you and me
 Clang support in DragonFly 
 In Other BSDs for 2014/10/25

Interesting articles
EuroBSDCon Trip Report: Bjoern Heidotting


Tuesday, October 21, 2014

BSD News 20/10/2014

Last week in BSD
Releases: JabirOS, FreeBSD
Other news: BSDSec, FreeBSD, Unix, LibreSSL, DragonFly BSD, OpenBSD, FreeBSD Foundation, pfSense, HardenedBSD

Releases

First beta release of #JabirOS 2.1 
  1. Based on FreeBSD 10.1’s codebase
  2. bsdinstall problems solved
  3. Used Jabir Project’s GENERIC configuration.
  4. based on JPPSL license
(JPPSL won’t be used anymore )


FreeBSD 10.1-RC2 Now Available   

The second RC build of the 10.1-RELEASE release cycle is now available on the FTP servers for the amd64, armv6, i386, ia64, powerpc, powerpc64 and sparc64 architectures.

The image checksums follow are included in the original announcement email.


Changes between 10.1-RC1 and 10.1-RC2 include:
  • Fix XHCI driver for devices which have more than 15 physical root HUB ports.
  • Fix old iSCSI initiator to work with new CAM locking.
  • Fix page length reported for Block Limits VPD page.
  • Add QCOW v1 & v2 support to mkimg(1).



BSDSec.net
LibreSSL 2.1.0 released. 
LibreSSL 2.1.1 released. 
[FreeBSD-Announce] Reminder: FreeBSD 9.1 and 9.2 end-of-life approaching 


Other news

July–September, 2014 Status Report 

The July–September, 2014 Status Report is now available.

This report covers FreeBSD-related projects between July and September 2014. This is the third of four reports planned for 2014.
The third quarter of 2014 was another productive quarter for the FreeBSD project. A lot of work has been done on various ARM platforms, with the goal of bringing them to Tier 1 status in FreeBSD 11. The various ports teams have also worked hard to improve the state of FreeBSD as a desktop operating system. As usual, performance improvements feature in several places in this report and many of these can benefit from user benchmarking to validate our results.

faster pf 

As I’ve written elsewhere, we are starting to focus on performance in pfSense 2.2 and beyond.  The first project was to implement AES-GCM with AES-NI acceleration (on CPUs that support it) for IPSec.   This project was accomplished in partnership between the FreeBSD Foundation, ESF, and Netgate, and has been stable in pfSense 2.2 snapshots for several weeks.

BSDって聞いたことある? | BSD Now 59   

This week on the show we'll be talking with Hiroki Sato about the status of BSD in Japan. We also get to hear about how he got on the core team, and we just might find out why NetBSD is so popular over there! Answers to all your emails, the latest news, and even a brand new segment, on BSD Now - the place to B.. SD.

Interesting articles
Unix: Expiring passwords with chage
Hardening procfs and linprocfs 
MineOS (Minecraft) Plugin for FreeNAS 
FreeBSD 10.1 Is to Support Secure Boot Capabilities

Code stuff
OpenBSD Passes 300,000 Commits 
Pile of point upgrades 
A Sneak Peek at the Upcoming OpenBSD 5.6 Release
OpenSSH update and incompatibility 
ingo@ incorporates man into mandoc 
/dev/upmap and /dev/kpmap added