BSD News 18/05/15

Last week in BSD

Releases: PC-BSD, OPNsense
News: BSDnow, BSDTalk, OpenBSD, freeNAS, HardenedBSD


[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-15:04.freebsd-update 
[FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-15:05.ufs 


PC-BSD 10.1.2 Released   

  •  New PersonaCrypt Utility
    • Allows moving all of users $HOME directory to an encrypted USB Drive. This drive can be connected at login, and used across different systems
    • Stealth Mode — Allows login to a blank $HOME directory, which is encrypted with a one-time GELI key. This $HOME directory is then discarded at logout, or rendered unreadable after a reboot
  • Tor mode — Switch firewall to running transparent proxy, blocking all traffic except what is routed through Tor.
  • Migrated to IPFW firewall for enabling VIMAGE in 10.2
  • Added sound configuration via the first boot utility
  • Support for encrypted iSCSI backups via Life-Preserver, including support for bare-metal restores via installer media
  • New HTML handbook, updated via normal package updates
  • Media Center support allowing direct login to Kodi and PlexHomeTheater for the 10ft user experience
  • Switch to new AppCafe interface, with remote support via web-browser
  • Improvements to Online Updater, along with GRUB nested menus for Boot-Environments
  • Migrate all ports to using LibreSSL instead of OpenSSL
  • Switch from NTPD to OpenNTPD
  • Lumina desktop 0.8.4
  • Chromium 42.0.2311.135
  • Firefox 38.0
  • NVIDIA Driver 346.47
  • Pkg 1.5.2

OPNsense version Released 

Here is the full list of changes:
  • proxy: basic proxy features on top of our new and shiny MVC framework under “Services: Proxy Server”
  • proxy: smart tokens for item lists (copy/paste CSV list into them and watch the magic happen)
  • proxy: help on/off per item or full page
  • proxy: hide advanced options and include sane defaults
  • proxy: FTP proxy included with same ACL controls as HTTP
  • proxy: simple authentication using built-in user database
  • openvpn: added Tunnelblick’s version of the OpenVPN XOR feature for protocol obfuscation[3]
  • core: fixed config.xml section import regression
  • core: stripped numerous dynamic strings from gettext() invokes
  • ports: added FreeBSD’s 10.1 ifinfo tool to probe for interface statistics to replace legacy PHP module code
  • ports: bsdinstaller 2.3 no longer uses cpdup utility, plus log collection and SONAME fixes
  • ports: updated to pkg 1.5.2, phalcon 2.0.0, dnsmasq 2.72_1[4]
  • ports: perl5 is now installed by default (5.18)
  • development: OpenSSL and LibreSSL branches have been merged for a simpler build experience and smaller release times
  • development: the package sets are now always kept as a single archive that can be reused and recompiled (even selectively)
  • development: stable translation template file is available now[5]
  • development: kickstarted Japanese and Chinese translations
  • development: language translation files are now automatically compiled into the core package
  • development: added a persistent build config file for setting the version, crypto flavour and release version tag (if applicable)
The update is available via the firmware upgrade feature only.

PC-BSD 11.0-CURRENTMAY2015 images now available

The PC-BSD project is pleased to announce the availability of our 11.0-CURRENTMAY2015 images.
WARNING: These images are considered “bleeding-edge” and should be treated as such.
The DVD/USB ISO files can now be downloaded from this URL.

Other new

Exclusive Disjunction | BSD Now 89 

This week on the show, we'll be talking to Mike Larkin about various memory protections in OpenBSD. We'll cover recent W^X improvements, SSP, ASLR, PIE and all kinds of acronyms! We've also got a bunch of news and answers to your questions, coming up on BSD Now - the place to B.. SD. 

bsdtalk253 - George Neville-Neil 

An interview with George Neville-Neil about the recently published 2nd edition of The Design and Implementation of the FreeBSD Operating System.
File Info: 30Min, 15MB
Ogg Link:

OpenBSD 5.7 CD 2 Incorrectly Pressed 

OpenBSD project leader Theo de Raadt ([email protected]) outlined some issues with the CD plant, which led to an incorrectly-finished CD 2, some of which were, unfortunately, shipped prior to the issue being found.
Sadly, CD2 of the OpenBSD 5.7 shipped in a broken fashion due to errors at the manufacturing plant. Two mistakes were made. In the rush after the first error, this error was not caught in time. Many people have received (or will soon receive) their package with this broken disc. Orders which have not yet shipped are being held back... because...
A repaired disc is on the way from the plant.
This will be shipped out to everyone, and will be inserted into the orders not yet shipped

Code stuff

secadm 0.2.1 Released
Shut up ARP 
In Other BSDs for 2015/05/16 

Interesting articles

Yes, You Can Virtualize FreeNAS 
Minnowboard and DragonFly
The importance of strong and fast cryptography

Wallpaper of the week

as fount at


Jan Hovancik

software developer - guitar player - poetry lover