BSD News 25/04/2016

BSD News 25/04/2016

Last week in BSD

Releases:SoloBSD, HardenedBSD, DragonFly BSD
Other news: BSDSec, BSDnow, p2k16, OpenBSD, NetBSD


BSDSec



Releases

SoloBSD 10.3-STABLE-v44.2

There is a new build of SoloBSD 10.3-STABLE based on the latest HardenedBSD stable branch version 44.2
You can grab it from Here. (45.8 Mb)
root password: solobsd

New stable release: HardenedBSD-stable 10-STABLE v44.2

HardenedBSD-10-STABLE-v44.2 - https://github.com/HardenedBSD/hardenedBSD-stable/releases/tag/HardenedB...
 

DragonFly 4.4.3 released

The DragonFly 4.4.3 point release is out.  There’s a commit page listing the changes between 4.4.2 and 4.4.3.  Nobody will be surprised that there’s an OpenSSL update in there.
If you want a complete image, it’s available for download at your nearest mirror.  If you want to upgrade an existing install:
cd /usr; make src-update 
    (or  src-create-shallow if you don't already have source)
make buildworld && make buildkernel
make installkernel && make installworld
make upgrade
reboot
 

News

The p2k16 hackathon has begun

OpenBSD developers from around the world have just gathered in Nantes, France for the p2k16 hackathon. This event is technically a ports hackathon, but many non-porters have showed up too, which means you can expect a variety of different improvements. As an early example, ajacoutot@ has just set sysmerge to run automatically during the upgrade process.
Head over to the hackathons page to see the artwork, and stay tuned to Undeadly for some post-hackathon reports.

Rushing into BSD | BSD Now 138

This week on the show, we will be talking to Benedict Reushling about his role with the FreeBSD foundation and the journey that took him there. That plus a few weeks worth of news to get caught up on, coming up next on BSDNow!

Code stuff


BSD News 18/04/2016

Last week in BSD

Releases: pfSense, OPNsense
Other news: BSDSec, HardenedBSD, freeNAS, xhyve, FreeBSD


BSDSec

 

Releases

pfSense 2.3-RELEASE

The most significant changes in this release are a rewrite of the webGUI utilizing Bootstrap, and the underlying system, including the base system and kernel, being converted entirely to FreeBSD pkg. The pkg conversion enables us to update pieces of the system individually going forward, rather than the monolithic updates of the past.  The webGUI rewrite brings a new responsive look and feel to pfSense requiring a minimum of resizing or scrolling on  a wide range of devices from desktop to mobile phones.
For the highlights, check out the Features and Highlights video. Past blog posts have covered some of the changes, such as the performance improvements from tryforward, and the webGUI update.
The full list of changes is on the 2.3 New Features and Changes page.
To get to a release, we’ve closed 760 total tickets.  While the majority of these were related to the Bootstrap conversion, 137 are fixed bugs impacting 2.2.6 and earlier releases.
Downloads for New Installs
Downloads to Upgrade Existing Systems – note it’s usually easier to just use the auto-update functionality, in which case you don’t need to download anything from here. Check the Firmware Updates page for details.

OPNsense 16.1.9 released

There is tremendous progress in the translations. It just so happens that we now have a comprehensive Russian translation as well which is going to be completed in the upcoming weeks. Many thanks to Smart-Soft Ltd. for making this happen. The contender is Japanese through the work of Chie Taguchi, who did most of the translation that we have had for a year. It is going to be a close race to the finish line for both languages. Then again, the whole translation team is doing an amazing job.
As polarising as it may be, we have added HTTPS support in the proxy server. Another noteworthy item is StrongSwan 5.4.0, which helps to address IPSec status page hangs that some have observed with complex setups. We are looking for feedback for these items, please do write in.

OPNsense 16.1.10 released

It has been a quite uneventful week. Suricata and Squid have been
upgraded to their latest versions and you can find their individual
change logs below. The next part of the Russian translation brings
it to number one with a dreamy 83% completed. Otherwise only small
fixes and improvements have been made and those will not even require
a reboot.

OPNsense 16.1.11 released

We are skipping a bit ahead with 16.1.11 to address a CSRF vulnerability, which shows us the good path we have been on since we started[1] and we will surely continue this security-aware trend.
In other news, this update includes native GeoIP alias support, captive portal voucher customisations requested by many and the last batch of Russian, effectively bringing it to 100% completed.


News

Introducing Full PIE Support

We at HardenedBSD have added support in 11-CURRENT for compiling nearly all of base as Position-Independent Executables (PIEs, for short). This work bumps hardening.version to 45. We've enabled PIE base for amd64 and i386 and hope to enable it for arm64 before or during BSDCan 2016. Compiling an application as a PIE enables it to take full advantage of ASLR. Without PIE support, the application itself is loaded at a fixed address, determined at compile time. As of this writing, only nine applications are not compiled as PIEs. At least two of them must stay that way (/sbin/init and /sbin/init.bak), so that leaves the outstanding list at seven. This is a huge leap forward for HardenedBSD. We have tested PIE base on several amd64 systems, both virtualized and bare metal. We have done multiple amd64 package builds with success. We would like to thank Bryan Drewery for his help.
An hbsd-update(8) update archive has been published for 11-CURRENT/amd64 with the "PIEified" base. Update at your leisure.
PIE base is enabled by default for amd64 and i386. We hope to enable it for ARM64 before or during BSDCan. Speaking of ARM64, we will be bringing ten Raspberry Pi 3 devices (which are ARM64) with us to BSDCan, eight of which will be given out to lucky individuals. We want the BSD community to hack on them and get ARM64/Aarch64 fully functional on them.

FreeNAS Mini XL | BSD Now 137

This week on BSD Now, I’m out of town for the week, but we have a special unboxing video to share with you that you won’t want to miss. That, plus the latest BSD news, is coming your way right now!


Code stuff


Interesting articles


Wallpaper of the week 


 from http://freebsdwallpapers.blogspot.cz/

BSD News 11/04/2016

BSD News 11/04/2016

Last week in BSD

Releases: FuguIta, SoloBSD, HardenedBSD,
Other news:BSDnow, Hammer, FreeBSD, Wallpaper,DragonFly BSD,

BSDSec

seems to be none warnings

Releases 

FuguIta LiveCD/5.9 

FuguIta-5.9-201604012simple
Based on OpenBSD 5.9
Just only OpenBSD installed.
FuguIta-5.9-20104041shrinked
Removed stuffs which are not necessary for LiveCD.

HardenedBSD-stable 11-CURRENT v44

HardenedBSD-11-CURRENT-v44 - https://github.com/HardenedBSD/hardenedBSD-stable/releases/tag/HardenedB...
 

HardenedBSD-stable 10-STABLE v44.1

HardenedBSD-10-STABLE-v44.1 - https://github.com/HardenedBSD/hardenedBSD-stable/releases/tag/HardenedB...

SoloBSD 10.3-STABLE-v44.1

There is a new build of SoloBSD 10.3-STABLE based on the latest HardenedBSD stable branch version 44.1
You can grab it from Here. (45.8 Mb)
root password: solobsd 
 

News

Call For Papers for EuroBSDCon 2016 in Belgrade, Serbia is out! 

On behalf of the EuroBSDCon 2016 Program Committee, here is the Call for Papersfor the EuroBSDCon 2016 conference which will take place in Bergrade, Serbiabetween 22-25 September 2016.
https://2016.eurobsdcon.org/call-for-papers/  closing date for the CfP is May, 8th. 

This is GNN | BSD Now 136

This week on the show, we will be interviewing GNN of the FreeBSD project to talk about the new TeachBSD initiative. That plus the latest BSD headlines, all coming your way right now!

Code stuff

Hammer and FreeBSD

Tomohiro Kusumi would like to port Hammer (1) to FreeBSD, as noted in this bug discussion.  It’s not even begun to happen, but if you can contribute, please do.


BSDNews 04/04/2016

Last week in BSD

Releases:OpenBSD, SoloBSD, pfSense,
Other news:pfSense, BSDnow, DragonFlyBSD, FreeBSD


BSDSec


Releases

OpenBSD 5.9 released (early!)

The release of OpenBSD 5.9, previously scheduled for the usual May 1st, has just been officially announced!
We are pleased to announce the official release of OpenBSD 5.9.
This is our 39th release on CD-ROM (and 40th via FTP/HTTP).  We remain
proud of OpenBSD's record of more than twenty years with only two remote
holes in the default install.
The release page mentions most of the major improvements, and the detailed changelog has a much longer list. Here are some of the bigger things incorporated into 5.9 that we're excited about. Read more...

SoloBSD 10.3-PRERELEASE-v44

There is a new build of SoloBSD 10.3-PRERELEASE based on the latest HardenedBSD stable branch version 44
You can grab it from Here. (45.8 Mb)
root password: solobsd

pfSense 2.3 Release Candidate

We are proud to announce pfSense® software version 2.3 Release Candidate is now available!
The most significant changes in this release are a rewrite of the webGUI utilizing Bootstrap, and the underlying system being converted entirely to FreeBSD pkg (including the base system and kernel). The pkg conversion enables us to update pieces of the system individually going forward, rather than the monolithic updates of the past.
For the highlights, check out the Features and Highlights video. Past blog posts have covered some of the changes, such as the performance improvements from tryforward, and the webGUI update.
The full list of changes is on the 2.3 New Features and Changes page.
In the process of getting here, we’ve closed out 742 total tickets, with most of those being items related to the Bootstrap conversion. Of those, 136 bugs have been resolved that affect 2.2.x and prior versions.
New Installs
Upgrades
You can upgrade straight to 2.3 from any previous release. Check the Upgrade Guide for details.

News

Speciality MWL | BSD Now 135

This week on the show, we interview author Michael W Lucas to discuss his new book in the FreeBSD Mastery series: “Specialty Filesystems”. That plus the latest news, feedback & more!
 

Features and Highlights of pfSense 2.3

Unless you’ve been completely out of the loop, you know that the official release of pfSense 2.3 is on the horizon. In anticipation of that event, Netgate, host of the pfSense® open-source software community and technical leader of the pfSense project, has put together a video that highlights many of the new and exciting changes in this release. Incalculable hours of engineering and testing time has been invested in this release. It’s certainly our biggest yet. As soon as it’s released, you can get it on official pfSense hardware at netgate.com. Enjoy!


Code stuff



Interesting articles

talks about blacklistd

Wallpaper


 from https://plus.google.com/u/0/b/112370801182816491936/+UlisesMAlvarez/posts/WgEbZrktsy9

BSDNews 28/03/2016

Last week in BSD

Releases: HardenedBSD, FreeNAS, OPNsense
Other news: BSDSec, HardenedBSD, LibreSSL, MidnightBSD, BSDnow, BSDTalk, DragonFly BSD


BSDSec


Releases

New stable release: HardenedBSD-stable 10-STABLE v44

HardenedBSD-10-STABLE-v44 - https://github.com/HardenedBSD/hardenedBSD-stable/releases/tag/HardenedB...
 

FreeNAS 9.10

Jordan Hubbard has announced the release of a new version of FreeNAS, a network attached storage project that is based on FreeBSD. The new version, FreeNAS 9.10, features the same user interface as the earlier 9.3 series, but with an updated FreeBSD core. "This is an interim release between the 9.3 series and 10 (which is still a few months away), using the same UI and middleware that everyone is used to from 9.3 but with new OS underpinnings, specifically FreeBSD 10.3-RC3. Coincident with this release of 9.10, we are also placing 9.3 into maintenance mode and will only be pushing further updates to the 9.3-STABLE train in response to the most critical security advisories or product flaws. We therefore strongly suggest that all current users of 9.3 upgrade to 9.10 in order to continue to benefit from the ongoing maintenance and bug fix work we will be doing on the 9.10-STABLE train. Most, if not all, bug fixes will be made exclusively to the 9.10-STABLE train in reaction to tickets filed on http://bugs.freenas.org. Again: Users who choose to stay on the 9.3-STABLE train will see only the most critical bug fixes and no new features or non-essential enhancements." This release also supports USB 3.0 devices and USB network adapters. Further information is available in the release announcement and release notes. Download: FreeNAS-9.10-RELEASE.iso (405MB, SHA256).

OPNsense 16.1.8 released

This quick 16.1.8 release is not a big update, but it means a lot. We have finished our full sweep of the GUI to update the look and feel of all pages and made the code ready for what is to come now: new features that are on our roadmap for 16.7. The first one will be the HTTPS proxy, but there is also NetFlow and improved statistics / reporting on the shortlist.
A day after 16.1.7 was out last week, FreeBSD 10.2-RELEASE-p14 was announced. Of the four patches enclosed, the two Hyper-V patches we have already brought to OPNsense over a month ago, the OpenSSH patch does not apply since we only use the port and already had it up-to-date. That leaves us with only one patch that we are shipping now to complete the experience.
Attention to everyone using OpenVPN + cryptodev acceleration: the cryptodev module along with older crypto drivers has been removed from the kernel itself, which means that if you need to keep using it, go to System: Settings: Misc and reconfigure your crypto hardware including an enable of cryptodev usage.
New images based on 16.1.8 will be out early next week.
Here are the full patch notes:
  • src: updated tzdata to version 2016b[1]
  • src: fix incorrect argument validation in sysarch[2]
  • src: fix pfi_table_update: cannot set new addresses
  • src: added APU2 temperature sensor support
  • ports: unbound 1.5.8[3], sudo 1.8.16[4], pcre 8.38[5]
  • proxy: better matching for overlapping URLs
  • universal plug and play: refactored pages for improved look and feel
  • vpn: refactored L2TP and PPTP pages for improved look and feel
  • openvpn: fix missed configure stage for Peer to Peer (TLS/SSL) mode
  • system: reworked the behaviour of thermal and crypto modules
  • firewall: tweaked a few rule indicator icons to improve clarity
  • firewall: improved alias validation on edit
  • interfaces: also add previous DHCP override fixes for IPv6
  • language: updated French and German

[1] http://mm.icann.org/pipermail/tz-announce/2016-March/000036.html
[2] https://www.freebsd.org/security/advisories/FreeBSD-SA-16:15.sysarch.asc
[3] http://www.unbound.net/download.html
[4] https://www.sudo.ws/stable.html#1.8.16
[5] http://vcs.pcre.org/pcre/code/trunk/ChangeLog?view=markup
Het bericht OPNsense 16.1.8 released verscheen eerst op OPNsense.


News

MidnightBSD with Lucas Holt

MidnightBSD is around for more than 10 years, but still, the most of BSD users are not familiar with it. That's why we decided to have a quick chat with Lucas Holt, MidnightBSD's founder and lead developer. We will talk about how he got started and what he is working on right now. 

 
Lucas Holt is currently a Senior Application/Programmer Analyst - Team Lead at the University of Michigan. In his own words, MidnightBSD is a heavily modified version of FreeBSD 9.1 with a custom package manager, the sensors framework, ZFS, utilities from NetBSD, OpenBSD, DragonFly and MirBSD, and a good start on a desktop system.

 

Marking up the Ports tree | BSD Now 134

This week on the show, Allan & Kris have gotten a bit more sleep since AsiaBSDCon, which is excellent since there is a LOT of news to cover. That plus our interview with Ports SecTeam member Mark Felder. So keep it tuned to BSDNow, the place to B...SD!


bsdtalk263 - joshua stein and Brandon Mercer

This episode is brought to you by ftp, the Internet file transfer program, which first appeared in 4.2BSD.
An interview with the hosts of the Garbage Podcast, joshua stein and Brandon Mercer. You can find their podcast at http://garbage.fm/
File Info: 17Min, 8MB.
Ogg Link: https://archive.org/download/bsdtalk263/bsdtalk263.ogg

clang in DragonFly, soon

John Marino has added the starting framework to use clang as the alternate base compiler in DragonFly.  Note that it’s not hooked into the build yet.  This is the first non-GCC compiler added into DragonFly, so there’s some work yet before you can have an all-clang system.  This should replace GCC 4.7, which is the current alternate compiler.  GCC 5.0 is the default, if you didn’t know.
Note that clang is present in dports, so it’s already been available for general use, for some time.  This framework is for building DragonFly itself.

Code stuff