Monday, November 11, 2013

BSD News 11/11/13

Last week in BSD
Releases: FreeBSD, GhostBSD, Security Router
Other News:DragonFly BSD, portmgr@ , OpenBSD, OpenSSH, b2k13 hackathon, BSDnow, PC-BSD


Releases

FreeBSD 10.0-BETA3 now available

The third BETA build of the 10.0-RELEASE release cycle is now available on the FTP servers for the amd64, i386, ia64, powerpc, powerpc64 and sparc64 architectures.

ISO images and, for architectures that support it, the memory stick images are available here or at any of the FreeBSD mirror sites.

Checksums for the installation images are available in the announcement email.

Changes between -BETA2 and -BETA3 include:

  • Several small fixes for the amd64 minidump code.
  • Add a 'pkg bootstrap' command which will bootstrap pkg(8) without forwarding any command to it after installation.
  • Fix make(1) warning output with 'make delete-old' and 'make delete-old-libs'
  • Add kernel side support for large TLB on BERI/CHERI.
  • Fix compatibility function for old daily_status_security_${name}_enable variables.
  • Add loader.conf(5) entries to import bootpool after boot when using full-disk encryption and ZFS.
  • Switch the default mtree to nmtree our new NetBSD derived mtree.
  • Remove the (unused) isf(4) driver.
  • Separate WITHOUT_CLANG and WITHOUT_CLANG_IS_CC.
  • Add atse(4), a driver for the Altera Triple Speed Ethernet MegaCore.
  • Fix a deadlock when trying to power off a USB device.
  • Support checking signature for pkg bootstrap from remote and for 'pkg add ./pkg.txz'
  • Fix long-standing issue with incorrect radix mask calculation.
  • Add support for using "pkg+http://" for the PACKAGESITE.
  • Add driver for POWER hypervisor interpartition ethernet.
  • Fix panic in the tap driver when a tap and vmnet interface were created after each other.

Pre-installed virtual machine images for 10.0-BETA3 are also available for amd64 and i386 architectures.
 

Eric Turgeon has announced, on behalf of the GhostBSD team, GhostBSD 3.5 Levi. Levi is the third release of the 3.* branch which improves GhostBSD 3.1 and introduces some new features.
Some of the new features are included in the last stable version are:
  • OpenSSL has been updated to version 0.9.8y.
  • DTrace hooks have been enabled by default in the GENERIC kernel.
  • DTrace has been updated to version 1.9.0.
  • OpenSSH has been updated to version 6.2p2.
  • Gnome 2.32 has been replace by Mate 1.6.
  • Xfce 4.10 is now part of desktop choice.
  • GhostBSD BSM theme with custom Faenza icon.
  • Mate, Xfce and LXDE contain a more uniform set of software.
  • Gimp is now install by default.
  • Shotwell is now install by default.
  • The installer GBI as been updated to 1.3.
The Coding Studio has a number of GhostBSD 3.5 screenshots, should you be interested to see how it looks without having to install it.
 
 
Today we’ll release version 3.2 (winter) of our security router. The reason for the 3.1-to-2 bump is the update from OpenBSD 5.3 to 5.4; signalling the fact that despite having few new features, it represents a major bump in under-the-hood changes, which results in a very large “binary diff” compared to minor version updates.
OpenBSD 5.4 was released only a few days ago, but because the code has been mostly frozen for several months, we’ve had plenty of time for testing. There are several reasons for why we closely track the OpenBSD and FreeBSD project’s progress and releases;
  • Our products benefit from advances in those projects, such as new features and improved hardware support.
  • Because we offer root login and modularity, our users appreciate the fact that the base system isn’t outdated.
  • Modernisation of our own code; utilising better and more efficient system APIs, following their style and conventions, and making our daemons and utilities fit into OpenBSD as good as possible.
  • Because we share all our patches, we can minimise our number of patches because they are continuously incorporated into OpenBSD.

 
Other News

DragonFly 3.6 branched

Branched, not released.  The release should happen in two weeks.  One major bug has been squished, and remember the upgrade process from 3.4 to 3.6 is a little different from normal.


Getting to know your portmgr@ — Mathieu Arnold

In this interview, we take a short break from the usual, and interview a portmgr-lurker@, Mathieu Arnold.  He was one of the founding members of perl@ back in the day.

DragonFly developer interview 

DragonFly developer Francois Tigeot  was interviewed on linuxfr.org.  As you can probably guess from the names, it’s a French site, but don’t let that stop you if you’re an Anglophone.

OSPF over IPsec 

Maxim Bourmistrov (maxim<at>unixconn<dot>com) wrote in to tell us about his Open Shortest Path First (OSPF) over IP Security Protocol (IPsec).
While looking for a solution for OSPF over IPsec, I found a lot of articles about how to do this over gre(4). The other possibility is to use gif(4) instead. I've tested both and was not quite happy with results. The gre(4) approach had some generic issues and the gif(4) approach had problems with multicast at times. Yet, I need to have "OSPF over IPsec" up and running.
Luckily, I remembered Theos' presentation about vether(4). While Theos' presentation was mostly written from developer perspective and not from administrators point of view, he left some clues about how this can be done.
The info below is how I do "OSPF over IPsec", or should I say "OSPF on top on vether on top of gif on top of IPsec".
Read more...

OpenSSH Security Advisory 

b2k13 hackathon report: Henning Brauer (henning@) on Lazy IP Checksumming   

Henning Brauer (henning@) just sent in his report from the b2k13 hackathon, but there's also a short interview with Henning over on ioexception.de which you might enjoy.
Berlin was a really convenient hackathon location for me, since getting there from Hamburg feels like a little longer S-Bahn ride. The fast ICE train makes it only a 90 minute trip. I arrived half a day later than intended due to work interfering, but I quickly got going.
Read more... 
 
OpenBSD adds support for XBox360 controllers 
 
OpenBSD adds fuse(4) support for adding file systems in userland 
 
OpenBSD Heads Up: Syntax change for smtpd.conf  

How to install Xfce on OpenBSD 5.4 
 
It seems that the old article "How to install XFCE on OpenBSD 5.2" is interesting a lot of readers.
This article is an updated version for OpenBSD 5.4. The only thing that changed from my point of view, is the remove of the package "thunar-vfs".

 Year of the BSD Desktop | BSD Now 10 



download (size: 475 MB )
We'll be talking to renowned BSD author Michael Lucas about his latest opus, "Sudo Mastery." Also, we've heard your cries and we'll also finally be showing you how to build a BSD desktop system from the ground up. There's plenty of news items to cover as well, so stay tuned to BSD Now - the place to B.. SD.
PC-BSD Weekly Feature Digest 11/8/13 
In Other BSDs for 2013/11/09  
 
Interesting articles
 
[Phoronix] Why FreeBSD Is Liking LLDB For Debugging
[Phoronix] The State Of FreeBSD's Bhyve Virtualization 
 
Other stuff
 
OpenBSD 5.4 song and original version
http://www.openbsd.org/songs/song54.mp3
http://youtu.be/33o32C0ogVM