Тип издания: Журнал Подзаголовок/Жанр: Компьютерный журнал Язык: Английский Издательство: www.bsdmag.orgКомплектность: Подшивка Годы издания: 2008-2012 Периодичность: Ежемесячный Формат: PDF Качество: Изначально компьютерное (набор и верстка) Количество страниц: 43-68 Годы в подшивке: 2008-2012 ISSN: 1898-9144 Описание: BSD Magazine — это бесплатный журнал o BSD-системах. Первое издание журнала появилось в июне 2008 года. Мы решили создавать журнал для пользователей BSD, энтузиастов и сообществ. Существует множество журналов посвящённых Linux, но ни одного посвящённого BSD системам. Значит ли это, что Linux лучше BSD? Совсем нет! В каждом выпуске мы ставим задачу доказать, что BSD системы являются надежными, безопасными и дружественными. Наши авторы не только профессионалы с длительным опытом работы и гуру BSD, но также и молодые авторы, которые могут рассказать много нового и интересного.
What's New in PC-BSD 9.1Dru LavignePC-BSD 9.1 adds many new features, ranging from more graphical utilities available within Control Panel, a redesigned installer, a server installation wizard, and improved jail management. This article introduces these new features. PC-BSD 9.1 is expected to be released during September, 2012. This article introduces some of the new features of this release
Setting up Your OwnCloud Instance via the Warden™Kris MooreIn this article we will be taking a look at the OwnCloud software, specifically how to do the initial installation and configuration inside a jail run by PC-BSD’s® jail management utility, the Warden™. First we will take a look at a setup done from a PC-BSD graphical interface, and then explore the same setup from the command-line using TrueOS™, the server version of PC-BSD.
Nmap: The Network Swiss Army KnifeGiovanni BechisNmap (“Network Mapper”) is a GPL utility for network discovery and security auditing. Many systems and network administrators find it very useful for network inventory, monitoring hosts and services uptime, debugging network related problems, and many other tasks. From this article you will learn the basic functionalities of Nmap 6.
Unix IPC with PipesPaul McMathThis article explains one of the earliest forms of inter-process communication (IPC) in Unix. Pipes were the original form of Unix IPC and were present in Third Edition of Unix (1973). They can only be used to communicate between related processes, but despite this limitation they still remain one of the most frequently employed mechanisms for IPC.
FreeBSD Enterprise Search with Apache SolrRob SomervilleBack office integration and cross platform search has always posed major challenges especially in large organizations with many legacy systems. With Apache Solr these barriers can be overcome and the power of enterprise search realised. In this new series the author will show you step by step how to commission an Apache Solr search engine.
Hardening FreeBSD with TrustedBSD and Mandatory Access Controls (MAC)Michael ShirkMost system administrators understand the need to lock down permissions for files and applications. In addition to these configuration options on FreeBSD, there are features provided by TrustedBSD that add additional layers of specific security controls to fine tune the operating system for multilevel security. By reading this article you will learn the configuration of the mac_bsdextended module and how to use the ugidfw utility.
Interview with Jeroen van NieuwenhuizenBSD TeamJeroen van Nieuwenhuizen was the chair of the EuroBSDcon 2011 organizing committee. Currently, he is one of the members of the EuroBSDcon Foundation board. He came in contact with Unix in 1997 and started to work with the BSDs in 2002. In his daily life Jeroen works as a Unix Consultant for Snow B.V. BSD Magazine asked him some questions regarding event organization and opportunities to participate in organizing EuroBSDcon.
Количество страниц: 48
Список номеров в подшивке:
Содержание номера:What's New in PC-BSD 9.1Dru LavignePC-BSD 9.1 adds many new features, ranging from more graphical utilities available within Control Panel, a redesigned installer, a server installation wizard, and improved jail management. This article introduces these new features. PC-BSD 9.1 is expected to be released during September, 2012. This article introduces some of the new features of this release
Setting up Your OwnCloud Instance via the Warden™Kris MooreIn this article we will be taking a look at the OwnCloud software, specifically how to do the initial installation and configuration inside a jail run by PC-BSD’s® jail management utility, the Warden™. First we will take a look at a setup done from a PC-BSD graphical interface, and then explore the same setup from the command-line using TrueOS™, the server version of PC-BSD.
Nmap: The Network Swiss Army KnifeGiovanni BechisNmap (“Network Mapper”) is a GPL utility for network discovery and security auditing. Many systems and network administrators find it very useful for network inventory, monitoring hosts and services uptime, debugging network related problems, and many other tasks. From this article you will learn the basic functionalities of Nmap 6.
Unix IPC with PipesPaul McMathThis article explains one of the earliest forms of inter-process communication (IPC) in Unix. Pipes were the original form of Unix IPC and were present in Third Edition of Unix (1973). They can only be used to communicate between related processes, but despite this limitation they still remain one of the most frequently employed mechanisms for IPC.
FreeBSD Enterprise Search with Apache SolrRob SomervilleBack office integration and cross platform search has always posed major challenges especially in large organizations with many legacy systems. With Apache Solr these barriers can be overcome and the power of enterprise search realised. In this new series the author will show you step by step how to commission an Apache Solr search engine.
Hardening FreeBSD with TrustedBSD and Mandatory Access Controls (MAC)Michael ShirkMost system administrators understand the need to lock down permissions for files and applications. In addition to these configuration options on FreeBSD, there are features provided by TrustedBSD that add additional layers of specific security controls to fine tune the operating system for multilevel security. By reading this article you will learn the configuration of the mac_bsdextended module and how to use the ugidfw utility.
Interview with Jeroen van NieuwenhuizenBSD TeamJeroen van Nieuwenhuizen was the chair of the EuroBSDcon 2011 organizing committee. Currently, he is one of the members of the EuroBSDcon Foundation board. He came in contact with Unix in 1997 and started to work with the BSDs in 2002. In his daily life Jeroen works as a Unix Consultant for Snow B.V. BSD Magazine asked him some questions regarding event organization and opportunities to participate in organizing EuroBSDcon.
Количество страниц: 48
Содержание номера:MaheshaBSD Server Edition Has Been Just Released!Juraj SiposMany newcomers to FreeBSD find it difficult to setup their own FTP/WWW server quickly and, on the other hand, experienced users sometimes need to take precautions for unexpected crash situations – that is, to have a strategy for time economization and portability, as these two are valuable assets in our rushing world. From this article you will find out ow to run a simple and smart FTP/WWW server.
Tuning ZFS on FreeBSDMartin MatuskaZFS is a modern 128-bit file system based on the copy-on-write model. It originates from the OpenSolaris project and has first appeared in FreeBSD in 2008. ZFS has many innovative features including an integrated volume manager with mirroring and RAID capabilities, data checksumming and compression, writable snapshots that can be transferred between systems and many more. In this article the author is going to discuss several tuning options including sysctl(2) knobs and give examples how can ZFS performance and efficiency can be measured and evaluated. This article is intended for FreeBSD users with ZFS version 28 available since 8.3-RELEASE and 9.0-RELEASE.
MPD5 – VPN Server with FreeBSD Setup and ManagementAntonio Francesco GentileMpd5 is a fast, flexible and secure way to make VPN connections on FreeBSD. It requires very few resources and supports a wide range of protocols, a great tool for network managers. By reading this article you will learn to setup and manage a VPN server PPTP based.
PostgreSQL PartitioningLuca FerrariIn the previous articles the main features of PostgreSQL, including server-side programming were shown. In this article a simple application scenario will be used to demonstrate the capability of partitioning huge amounts of data into different tables in different spaces transparently.
DNSSEC Part 4: Securing DNS TransactionsPaul AmmannIn the June 2012 issue, we outlined the threats, security objectives, and protection approaches for various DNS transactions. This article provides the steps involved in implementing those approaches, as well as operational best practices that go with those implementations.
Количество страниц: 48
Содержание номера:Deploy a Full-featured Mail Server on OpenBSD 5.1 with iRedMailZhang HuangbiniRedMail installs and configures mail server binary packages automatically from the official software repositories provided by Linux/BSD distribution venders. These packages include: Postfix, Dovecot, Apache, OpenLDAP, MySQL or PostgreSQL, Amavisd and Roundcube. The article is dedicated to Open Source edition of the program.
freebsd-update as Intrusion Detection SystemMichael W. LucasOne of the most annoying things a sysadmin can endure is a system intrusion. A script kiddie might only install an IRC bot, but a skilled intruder can carefully replace core system binaries so as to exploit more systems or extract more data. An Advanced Persistent Threat (APT) intruder might even patch and secure a penetrated system, so as to delay detection…
Taming the Blowfish with a DogAntoine JacoutotThis article is meant to be a quick, yet comprehensive overview of using Kerberos to manage user passwords and single-sign-on on OpenBSD. It is by no way an exhaustive documentation about Kerberos – entire books have been written about it!
Upgrading Ports Using PortmasterEdward TanOn a FreeBSD server, the system administrator has the choice of using either packages (binary) or the ports system (source). Packages are precompiled binaries from the source in the ports system. These packages come with some sane default options. It is sufficient for a server with minimum customization.
Hardening FreeBSD with TrustedBSD and Mandatory Access Controls (MAC) Part 2Michael ShirkMost system administrators understand the need to lock down permissions for files and applications. In addition to these configuration options on FreeBSD, there are features provided by TrustedBSD that add additional layers of specific security controls to fine tune the operating system for multilevel securit.y From this article you will learn the configuration of the Mandatory Access Controls provided by FreeBSD and how to apply the concepts of the Biba model to FreeBSD.
DNSSEC Part 3: Securing the DNS Hosting EnvironmentPaul AmmannDNS security can be distilled into two maxims: always run the latest version of your chosen DNS software package, and never provide unnecessary information or services to strangers. Put another way, keep current and be stingy! The truth is: DNS servers are susceptible to the same types of vulnerabilities (platform, software, and network-level) as any other host on the Internet. This article will provide guidelines for secure configuration of the DNS hosting environment. The author focuses on three areas: content control of the zone file, securing the DNS host platform and software.
Interview with Gabriel Weinberg, Founder of DuckDuckGoDiego Montalvo & BSD TeamDuckDuckGo is a general purpose search engine with way more instant answers, way less spam/clutter, and real privacy. Read the interview with its developer to find out more about the purpouses behing its unique features!
Количество страниц: 52
Содержание номера:DNSSEC: Threats to DNS Transactions Part 2Paul AmmannThe threats to a DNS transaction depend on the type of transaction. Name resolution queries and responses (DNS query/response) between DNS clients (stub resolver or resolving name server) and DNS servers (caching/resolving name server or authoritative name server) could involve any nodes in the Internet. Paul, in his article, looks at protocol-based threats to the operation and administration of DNS.
Anatomy of a FreeBSD Compromise Part 6Rob SomervilleWhile it is impossible to secure a server against every possible form of attack that the dark side may muster, by taking defensive steps the system administrator can make life exceedingly difficult for the hacker and can delay if not totally avoid a successful attack. Rob claims that while many of the suggestions are probably second nature to most admins, it cannot be stressed enough with busy schedules and tight deadlines the importance of preventative maintenance which has a tendency to slip down the priority list. Rob also examines some techniques that can assist in identifying and delaying attacks.
Using Qjail to set up the basejailBenedict ReuschlingFreeBSD’s jail system offers process isolation within a separate environment in order to secure the host system. In case of a compromised service, only the jail running that service is affected. In a similar fashion, ZFS allows the creation of a separate filesystem for each jail. Benedict, in his article, explains how jails can be quickly instantiated using a third party wrapper script called Qjail.
PostgreSQL: Server-Side Programming Part 2Luca FerrariLuca claims that one great advantage of PostgreSQL is that it can run functions written in several foreign languages other than pure SQL and its extension plpgsql or the standard C. There are extensions that allow developers to write procedures using Java, Perl, Python and even Bash-like scripting! In this article Perl will be used as a language for both triggers and procedures showing how PostgreSQL can be flexible for server-side programming.
Synchronization Problems or: How I Learned to Stop Worrying and Love the Sleep MutexJoseph KongWhen two or more threads executing on different processors simultaneously manipulate the same data structure, that structure can be corrupted. Fortunately, FreeBSD contains multiple solutions to this problem. Joseph addresses his article to the problem of data and state corruption caused by concurrent threads.
ZFS Madness with BEADM - How ToSawomir Wojciech Wojtczak (vermaden)Some time ago Slawomir found a good, reliable way of using and installing FreeBSD and described it in my Modern FreeBSD Install 1 2 HOWTO. Now, more then a year later he come back with his experiences about that setup and a proposal of newer and a lot better way of doing it.
Количество страниц: 52
Содержание номера:A Fresh Look at the Warden for PC-BSD 9.1Kris MooreFor the PC-BSD 8.x series, new jail management software named “Warden” was first introduced. This software provided users a brand new graphical method of managing FreeBSD jails on their desktops. For 9.1 Warden has been given a complete makeover, and incorporated directly into the base system. Read the article to find out what are the new features that make PC-BSD 9.1 more versatile than ever for jail administrators and users.
Intro to DTraceCarlos Atonio NeiraSometimes you wish you had a comprehensive tool for profiling and debugging without having to maintain a chain of tools, merge their outputs and put some glue here and there to extract meaningful information from it. We now have a tool called DTrace, originally developed by Sun. From this article you will find out how to setup DTrace in your Freebsd box. The author will test also some of the providers available for DTrace and see the output.
A Web Application Firewall for NginxBenedikt NiessenWhen servers got compromised web applications present themselves very often as the entry point. In most cases the reason is an outdated script with known or unknown vulnerabilities or an in-house development which is not properly validating submitted data. Well this is nothing new to you, I hope. The questions is what we can do to prevent this. By reading this article you will learn how to set up a high performance, low maintenance Web Application Firewall in NGINX. This what you will find in this article is just a sample of what you can read in a new book written by Benedikt Niessen. Unfortunately, published in German, but who knows – maybe soon the english edition will be available as well.
Introducing EasyPBI – Making PBI Modules With a Few Mouse ClicksJesse SmithIn this article we are going to talk a bit about Push Button Installer (PBI) packages and how we can quickly create these packages from existing software in the FreeBSD Ports Collection. The tool we will be using to facilitate the creation of these packages is called EasyPBI and it can be installed from FreeBSD Ports.
Mysql-zrm: Enterprise Level Backups for MySQLGiovanni BechisSetting up MySQL backup and restore processes typically takes up a lot of a DBA’s time and attention. With mysql-zrm we can setup a backup strategy without the need of creating complex custom shell scripts.Once we have our MySQL server up and running we need a backup strategy to save our data. Instead of using complex scripts written around mysqldump we could use a software that has many feautures to backup our databases and that is easy enough to deploy.
Anatomy of FreeBSD Compromise (Part 5)Rob SomervilleIn the penultimate part in our series, we will compromise a FreeBSD server using different techniques. The *BSD family are some of the most secure operating systems available today. Security is very much a fundamental philosophy and mindset, as it is very difficult to implement once software is written. Earlier versions are not so secure (unless patched) so I have created another FreeBSD 7.0 test server, as well as our 6.1 and 5.0 hosts. Let’s see what happened…
Hardening FreeBSD with TrustedBSD and Mandatory Access Controls (MAC)Michael ShirkMost system administrators understand the need to lock down permissions for files and applications. In addition to these configuration options on FreeBSD, there are features provided by TrustedBSD that add additional layers of specific security controls to fine tune the operating system for multilevel security. From this article you will learn the configuration of the Mandatory Access Controls provided by FreeBSD. You fill also find out how to apply the concepts of multilevel security model to FreeBSD.
Security Best Practice for DNS ServersPaul AmmannWhat happens when a trusted server turns out not to be so trustworthy, whether by accident or by intent? Many client machines are only configured with stub resolvers and use trusted servers to perform all of their DNS queries on their behalf. In many cases, the trusted server is furnished by the user’s ISP and advertised to the client via DHCP. Besides accidental betrayal of this trust relationship — whether by server bugs, successful server break-ins, etc. — the server itself may be configured to give back answers that are not what the user would expect.
Количество страниц: 56
Содержание номера:Here Comes the CloudDiego MontalvoIn the past couple of years the term “cloud” has been on every tech news headline from companies offering “cloud” computing or start-ups running killer “cloud” based services. After a lot of thinking and rewriting I decided “cloud” can mean different things, it all depends on how it is being referenced. For example “cloud” by itself is short for Internet or long for web. (…) Cloud-computing has also began to infuse itself into different BSD flavors: Amazon’s Elastic Compute Cloud (EC2) offers users the choice of FreeBSD and NetBSD AMIs (Amazon Machine Instances). Where as RootBSD offers users a choice of BSD on Xen based virtual private services with full technical support.
Developing Applications Using mportCaryn HoltIn the February issue, you saw how to use the mport system as an end user. In MidnightBSD, you can access the mport features as a developer and add support for mport to your existing C, C++ or Objective C application. (…) The mport library allows developers to integrate some or all of mport features into their own applications without calling exec(). This article is just an introduction to the many features available to MidnightBSD application developers. I would recommend going to the MidnightBSD website for further information.
Taking the BSDA Certification ExamDru LavigneThe first article in this series (in the February 2012 issue) addressed some common misconceptions about certification and described why you should be BSDA certified. The second article in this series (in the March 2012 issue) discussed how to prepare for the BSDA certification exam. This article will provide some background information on how the exam is delivered and why. It will then describe where to take the exam and how to arrange for an exam if there currently isn’t an examination event or testing center near your location.
Installing OpenBSD 5.0 on VMware ServerToby RichardsWe’re going to install OpenBSD 5.0. With the information in this article, you’ll learn how to install it both on your own computer and via VMware Server. For my example, I’ll use my own Bsdvm.com account.
Installing FreeBSD on Amazon AWS EC2 Cloud ServicesDiego MontalvoI have had an AWS account since Amazon first introduced the Elastic Compute Cloud (EC2). But to be honest back in the day it was fairly cryptic to get an instance running, the AWS web interface was in it’s infancy and documentation was limited. From this article you will learn how to install a FreeBSD on Elastic Compute Cloud and run a Virtual Server on the Cloud.
PostgreSQL: ReplicationLuca FerrariIn the previous articles we saw ho to set up a PostgreSQL cluster, how to manage backups (either logical or physical) and how internally transactions work. In this article we will see how it is possible to replicate a running cluster to another instance in order to have a fully mirrored and active “stand-by” node. Most of the configuration will be done by simple shell scripts in order to both show required instructions and to allow readers to replay several time the experiments. Please note that configurations shown in this article are for didactic purposes only, and represent only a starting point for replica environments.
Interview with Mark PriceDiego Montalvo & BSD TeamI don’t think cloud is anything specifically new. I think its just a term that describes the trend in businesses outsourcing more IT functions. My experience with IT people in general is that IT people are very possessive and territorial, wanting to have lots of servers doing lots of things in-house. The ‘cloud’ idea just says “OK, we are going to outsource some of this boring technology stuff and instead concentrate on what’s really important to us”. Read the interview with President of Tranquil Hosting and owner of RootBSD to find out what is his view on the Cloud.
The Greater Benefits of Open Source SoftwarePaul AmmannIn contrast to proprietary software produced by most commercial manufacturers, Open Source software is written and perfected by volunteers, who freely share the programming code that would otherwise be kept secret. (…) Let’s address Open Source as a market phenomenon, stating some of the basic facts and seeking to clarify some misconceptions that have emerged in recent treatment of the issue.
Количество страниц: 52
Содержание номера:MaheshaBSD-2.0 — What's New On The Lake Manasarovar?To readers who have not yet come across the 2010 May issue of the BSD Mag, where MaheshaBSD-1.0 was first introduced, I reiterate that MaheshaBSD is a free homemade project – a Live CD based on FreeBSD that puts together the Hindu feel and FreeBSD. A few things give it this touch – for example, a possibility to use 4 keyboard layouts also with Devanagari (an Indian script used for writing Sanskrit and contemporary Indian languages) and IAST (transliteration of Sanskrit), the author’s Xmodmap solution. Its name is derived from Mahesha, one of the names of Lord Shiva. The name Mahesha (MaheshaBSD) was chosen because Lord Shiva is armed with the same weapon as FreeBSD – the trident.
GhostBSD: A Brief OverviewGhostBSD was created to encourage the use of FreeBSD users with little experience, and also for those curious who want to learn freebsd in a simple, or for those seeking a more robust alternative to the current options available in Linux kernels. An operating system with graphical environment, simple and useful, as is implemented in GhostBSD, it helps enthusiasts to take their first steps, provides more security and incentive to experiment.
How Do I Study for the BSDA Certification?The previous article in this series addressed some common misconceptions about certification and described why you should be BSDA certified. This article will discuss how to prepare for the BSDA certification exam.
GDB(1) and Truss for DebuggingSometimes you are lucky to have the source code for the program you need to debug. However, there are times when the source code isn’t available. When all hell is breaking loose, what do you do? On your unix machine there are tools that can save the day. OpenBSD, FreeBSD and NetBSD all have the ktrace utility for following the various kernel related activities of a given process. FreeBSD has a tool specifically for tracing system calls. It’s called truss(1) and when used together with gdb(1) it can give you a clearer view into a black box.
PostgreSQL: MVCC and VacuumIn the previous article readers have seen how to quickly install and configure a PostgreSQL cluster, as well as how to do logical backups, using pg_dump(1) and physical backup (with particular regard to Point In Time Recovery). This article shows a little more about PostgreSQL internals and how it exploits MVCC for high concurrency. Readers will also learn about the importance and usage of vacuum for regular maintanance.
Beowulf Clusters with DragonflyBSDThere are two types of computing clusters: High availability (HA) clusters are designed so that if one computer fails, the other(s) take over its job. HPC clusters enable many computers to do the same job together so that processing power is increased. We’re going to focus on the latter. An HPC cluster on consumer grade hardware is called a Beowulf after the classic poem written sometime between 700 – 1000 AD. Beowulf technology is the result of a 1994 cooperative research project between NASA and several universities. Since DragonflyBSD development focuses so much on performance, it seems the best option for a BSD Beowulf. In fact, HPC clusters are one of the stated design goals of DragonflyBSD.
NPPPD: Easy PPTP VPN with OpenBSDHave you ever needed to set up a VPN for Microsoft Windows or Mac OS X users? From this article you will find out how to configure OpenBSD and npppd to provide PPTP and L2TP VPN’s in a few easy steps. In January 2010, npppd was imported into the OpenBSD source tree and this software can act as a PPTP/L2TP VPN server and also as a PPPOE server. Because npppd is still under active development and still missing some features, it is not linked to the standard build yet, so to install the program you first need to build it from OpenBSD source tree.
Anatomy of a FreeBSD Compromise (Part 4)Continuing our security series, we will look at the vulnerabilities on our test network. From the last article, we discovered that to penetrate a system we continually needed to move from the general to the specific, and to identify the most vulnerable system on our network depending on what services were running on it.
Количество страниц: 48
Содержание номера:Customizing Your PC-BSD 9.0 DesktopOne of the most important new features of PC-BSD 9.0 is the ability to customize your desktop with a variety of different FreeBSD packages, such as desktops, window-managers, servers, drivers and more. This is done through the new pc-metapkgmanager utility and it’s front-ends, which allows users to quickly and easily select a bundle of packages, such as KDE or GNOME, to install. This ability in effect allows a user to deploy a custom FreeBSD based desktop without the hassle of using the command-line and manually resolving dependency issues. Lets take a look at how this can be used in the new PC-BSD 9 desktop.
The MidnightBSD Package Management ToolsOne of the most tedious tasks in setting up and maintaining a personal computer is installing software applications. The BSD community has historically handled this by providing users a ports system to compile software and later some package management software. This approach has worked well for power users. The Linux community has built some user friendly package management tools with command line and graphical user interfaces. In minutes, one can install a new web browser or word processor.
Why Should I Become BSDA Certified?If you are reading this magazine, you are interested in learning more about BSD systems. Perhaps you have seen this magazine’s ads for BSD Certification and want to learn more about this certification program or perhaps you think that certification is not for you. This article addresses some common misconceptions about certification and describes why you should be BSDA certified. This article outlined some of the benefits provided by a psychometrically valid certification program as well as some tips for learning the skills needed to pass a certification exam.
What Can’t You Do On The command-line?Most of us have all grown accustomed to some form of true graphical interface to our computers. But there’s always that group of so-called `geeks’, which remain to work at a simple 80?24 console. But that’s just for geeks, or is it?
PostgreSQL: From Installation to PITR“The most advanced open-source database available anywhere”, this is the comment for the PostgreSQL package. PostgreSQL is an enterprise-level ORDBMS very stable and reliable, with a rich set of features that make it competing with well known commercial databases. PostgreSQL is released under a BSD license, has a very comprehensive documentation and is maintained by a set of database experts around the planet. In this article you will learn how to install and set up a PostgreSQL cluster, how to interact with the system and how to make backups of your databases.
OpenBSD with SUN JAVA & NetbeansThis article is designed for Java developers who wants to have a good operating system for their works. You will learn how to setup SUN Java system and Netbeans on your OpenBSD desktop.This article is based on OpenBSD 5.0 version.
Data Classification PolicyA good sysadmin realizes that security is more than firewalls, encryption, patching, and other technical considerations. One common saying is: “The only secure computer is one that’s not plugged into the network.” Humbug! A clever intruder will easily trick the user into plugging that Ethernet cable back into its socket. The weakest point in any network is the human element. I want to share with you my data classification policy.
Load Balancers. Enterprise Load & Service AvailabilityThe world is a complex place. A term that means one thing to one person may mean something completely different to someone else. Take Load Balancers for example. How many different Load Balancers can you think of?
Anatomy of a FreeBSD Compromise (Part 3)Continuing in our security series, we will look at the tools essential to securing and exploiting systems.In the previous articles, the author looked at the culture and processes behind hacking exploits, as well as some possible real-life examples. In this article we will look at some of the tools used to penetrate, test and secure devices as well performing analysis and discovering vulnerabilities. While the examples here are non-destructive, it is recommended that these tests are carried out on a private test network and definitely not on the Internet or without your employer’s approval. To do so may well be in breach of your ISP’s or employers Acceptable Use Policy and could lead to legal action against you.
Counting Our Losses2011, a hefty year as they all say. Even Discovery Channel has specials on the events of this year. The devastating earthquake in Japan, the war on terrorism finally claimed their hard sought-after victim and even the untimely death of Steve Jobs has a special. But what about the real heroes? The heroes behind the screens, outside of popular media?
Количество страниц: 52
Содержание номера:What’s New in FreeBSD 9.0FreeBSD 9.0-RELEASE introduces many new features which benefit FreeBSD users, application developers, and companies that use or base their products on FreeBSD. This article provides an overview of some of these features, including references to additional information.
Home Brew Captive Portal With OpenBSDHave you ever used a public wireless network that has a splash screen such that you have to agree to certain terms before going to the Internet? The author of this article will show you step by step how to build one of those using OpenBSD’s Packet Filter (pf).
Puppet on FreeBSDThis article aims to jumpstart a system administrator on how to use Puppet (configuration management tool), to manage server’s configurations, particularly on FreeBSD. From this article you will find out what is Puppet and how to deploy servers by using it.
FreeBSD IPS With Snort InlineA number of articles have been written covering the basic configuration of Snort in IDS mode on the different BSD operating systems. One feature that is not typically discussed is Snort’s ability to integrate with ipfw that allow for inline IPS mode on FreeBSD. This article covers the basic configuration of Snort in IPS mode on a FreeBSD server.
malloc(9): The Kernel’s General Purpose Memory AllocatorThe release of 4.3BSD in 1988 introduced a new memory allocation mechanism intended to be general enough to effectively meet the needs of diverse kernel subsystems requiring dynamic memory allocation. This article gives an overview of malloc(9) and its corresponding function free(9) and explains how this type of dynamically allocated memory is managed within the kernel.
Keeping FreeBSD’s Base System and Packages Up-To-DateIn tis article the author deals with an ungrateful topic of keeping both FreeBSD’s base system and installed packages up-to-date. Read it to learn more about upgrading/updating FreeBSD system, adding/removing packages and get some knowledge about Ports concept and its genaral usage.
Anatomy of a FreeBSD Compromise (Part 2)Continuing in our security series, the author will look at the ways that “the bad guys” can gain access and what can be done to mitigate this risk. As mentioned in the previous article, the author highlighted this time some of the reasons why servers and systems are inherently insecure and why it is impossible to 100% secure any system. In this article, he will examine some of the common techniques used to gain control and what we can do to mitigate the risks.
Elephants in PratoThe first official Italian PGDay was organized by a bunch of volounteers and passionates, including the author, in 2007. At that time ITPUG did not exist at all. The conference catch the attention of several other PostgreSQL related communities, including Japan PostgreSQL Users’ Group (JPUG), and had a lot of special guests including members of the core team. This quickly lead the organizers to extend the conference from one day only to a two days event.
Количество страниц: 48
Содержание номера:Google Code-In and FreeBSD’s ParticipationFor the first time, the FreeBSD project is participating in another program run by Google Inc. to encourage student participation in open source projects – Google Code-In. While being similar to Google Summer of Code, some aspects are quite different. This article will explain the program from a participating organizations point of view and what it’s current progress looks like.
Installing PC-BSD on a MacStarting with PC-BSD 9.0-RC1, it is now possible to easily install directly to a Mac or MacBook BootCamp partition. In this article the author will show you how to setup the Mac for dual-booting, and perform the installation.
Keeping Your Configuration Files Shiny Using sysmerge(8)In the past, updating configuration files would either require a patch file which would update some of the files that would usually not be modified by the admin, or one would have to manually merge the changes between the old and new versions… which was cumbersome. Having a tool that would help the administrator update his configuration in a fast and easy way didn’t exist at that time and it was the reason sysmerge(8) was created. By reading this article you will find out more about sysmerge(8) usage and best practices.
Rolling Your Own FreeBSD KernelCompiling a custom kernel has its own advantages or disadvantages. However, new users may find it difficult to compile a FreeBSD kernel. When compiling a kernel, you need to understand a few things other then just typing a couple of commands. In this article, the author will cover the nuts-and-bolts of compiling a FreeBSD kernel.
OpenBSD 5.0: PHP, Cacti, and SymonIn October issue the author gave instructions on how to create an OpenBSD-Nginx-MySQL-PHP (ONMP) server. Now, you will learn how to get a basic Cacti server running and how to monitor your OpenBSD server with Symon. You will also find out more about new PHP changes in OpenBSD 5.0.
Extracting Useful Information From Log MessagesThe syslog-ng application is a powerful and flexible system logging and log message processing tool to help the work of system administrators. This article highlights some of its newer and lesser-known capabilities.
Anatomy of a FreeBSD CompromiseWhile the BSD family is more secure than most, no server or IT system is invulnerable to attack. In this article the author will examine best practices to prevent disruption and what to do when the worst does happen. This is the first part of new series written by GIS series author. Read and learn more about (in)security in BSD world.
Hardening BSD with Security LevelsBy default, BSD servers are more secure then other operating system installations but still require some changes in order to be production ready. Security levels are one of the tools that can be used in order to maintain the state of the system when being deployed in production. This article covers the configuration of security levels via securelevel for OpenBSD, FreeBSD, NetBSD and DragonFlyBSD.
Содержание номера:PC-BSD 9 Turns a New PageSince 2005, PC-BSD has striven to make BSD accessible to the desktop user. Offering a slew of improvements and added features, this release brings a more accessible BSD operating system than ever. Read the review and find out more about it.
A Beginner’s Guide To PFOpenBSD, FreeBSD, and PC-BSD use a built-in firewall called “Packet Filter”. This article is intended for a PF beginner to get a beginner’s understanding of how to use PF in OpenBSD.
Creating Your Own PBI RepositoryIn this article author describes the steps required for setting up and maintaining your own repository on a FreeBSD system.
Speed DaemonsFrom this article you will learn how by using advanced networking mechanisms in FreeBSD build a high performance, highly available web application server.
A GIS Strategy For Web-Enabled BusinessIn his final article of our GIS series, the author will show you how to successfully manage and commission a complex GIS project.
Equip Your CA With a HSM For <50 EurosThe CA is used for identification and authentication of servers, clients and users. Together with author take a closer look at the security of Certificate Authority in his own network.
Terminals Served Up BSD StyleYou may have your own reason for wanting a BSD terminal server. There are two solutions to this goal: FreeNX or XRDP. This article will show you how to use both solutions.
OpenBSD Kernel Memory Pools: Monitoring Usage With SystatThis article explains how to understand memory usage statistics for kernel memory pools as they are displayed by the systat(1) command on OpenBSD.
FreeBSD 8.2 Against Ubuntu ServerAn Objective Comparison of two Power House Open Source Server Platforms, BSD Unix and Linux.
EuroBSDcon 2011 From An Organizers PerspectiveHave an inside look at the EuroBSDcon and get to know about events and speeches that took place in the beginning of October 2011 in Netherlands.
Количество страниц: 48
Содержание номера:The Inevitability of IPv6Part 1: A switch from IPv4 to IPv6 is on your horizon. Are you ready for it? Part 2: Configure IPv6 in your network – even if your routing infrastructure doesn’t yet support it.
iXsystems Announces Release of FreeNAS™ Version 8.0.1
Configuring a FreeBSD Stealth Logging ServerThe collection of log files provides security administrators with the ability to have an audit trail for the behavior of an information system. In the event that a system is compromised, remote logging provides a forensic trail to determine what occurred on the system.
DragonflyBSD news: Recovering Data With HammerIt’s been a while since we had a straightforward news report for DragonFly; the time since then has been filled with reports on Hammer and bulk pkgsrc builds.
Using Openmaps Data With GeoserverIn this article in our GIS series, we will examine how to import Openmaps data. Open Street Map (openstreetmap.org) founded in July 2004 by Steve Coast, is a treasure trove of worldwide street maps available under the Creative Commons licence.
ONMP on OpenBSD 4.9ONMP on OpenBSD 4.9OpenBSD is my BSD of choice. In fact, it is my OS of choice wherever possible. I always challenge those who disagree with me to name another OS with a similar track record for security.
OSSEC on OpenBSD (ONMP) 4.9It is worth saying up front that these instructions assume that you’re running Nginx compiled from source vice Apache or Nginx from Ports or Packages.
Taking a Peek Under the Hood – LibGTop and OpenBSDLibGTop allows developers to peek under the hood of the kernel and export lots of system data in a convenient and easy to use library.
Protecting Apache From Dos And Ddos AttacksDOS or DDOS, it is an attack where multiple compromised systems (which are usually infected with a Trojan) are used to target a single system in attempt to make the system resources(cpu,memory,network) unavailable to its intended users and causing system to crash.
Количество страниц: 48
Содержание номера:DNSSEC resolution and IPv6 Unbound on FreeBSD 8.2Unbound runs on FreeBSD, OpenBSD, NetBSD, Linux, and Microsoft Windows. It provides a reasonably simple way to implement DNSSEC in a local-area network. With Unbound forward and reverse resolution is possible for small networks where IPv6 is implemented.
Keeping up to date in PC-BSD 9Since the early days of PC-BSD, there has been various GUI mechanisms for performing critical system and security updates.
Using Life Preserver to Backup a PC-BSD 9.0 System to FreeNAS™ 8.0.1This article demonstrates how to use the built-in Life Preserver program to backup a PC-BSD 9.0 desktop system to a FreeNAS™ 8.0.1 NAS system. Users can refer to the Guides at http://wiki.pcbsd.org/index.php/PC-BSD_9_Handbook and http://doc.freenas.org for instructions on how to install PC-BSD and FreeNAS™.
Recovering data with hammerWe’ve all experienced instant regret. That’s the feeling that comes within a second of executing a command like „rm -rf * .txt” (note the space) or of cutting the wrong cluster of wires at the end of a long conduit. Not that I am quoting from experience, or anything like that, no…
Apache2, php5, mysql5, modsecurity2.5 installation and confguration in order to protect dynamic websites from various attacks, in Freebsd 8.2In the last years there is a tremendous increment in dynamic website and cms using php. A very large piece of the market of this websites are served by Apache Webserver using Mysql as database basically in Unix systems. Also this tremendous increment of php in dynamic website and opensource cms like joomla increase and hackers attacks in order to compromise a website or hack the server to use it in botnet. So someone can wonder, is there anything that can protect my websites except from backups and upgrading our system and software? The answer is yes.
MySQL Unleashed!We explore some tips and tricks that you can use to gain better performance with MySQL.
Terminal Descriptions for OpenBSD AMD/Intel consolesIn this article I would like to describe the results of my work of tuning OpenBSD consoles for AMD/Intel PCs. These results are also applicable to computers with the same hardware architecture (amd64 or i386, see http://www.openbsd.org/plat.html): servers, workstations, notebooks, etc.
(Ab)using VideoLAN: Learn what you can do with your video and audio using powerful VideoLAN command line interfaceDealing with video and audio data is the part of our everyday life. Sometimes, though, we need to do things that fall into „advanced” category. What tools should we use then?
NetBSD Intrusion Detection Server. How can we describe the functions of such a server?Sometimes special type of systems are needed to be running on the server. This server will serve different purposes, it will take care of the network security.
Количество страниц: 52
Содержание номера:Getting Started with FreeNAS™ 8.0.1This article provides a big picture overview of the steps that are performed when configuring a FreeNAS™ 8 storage appliance. Subsequent articles will demonstrate specific configuration scenarios.
Your BSD ‘App Store’ with pbulk: Building everything in pkgsrc with automation using DragonFlyBSDThe „app store” concept seemingly is the latest fad with Apple, Google, Amazon, Valve and so on. Each of them creating individual platforms for moving software to incidental customer gadgets completely through electronic download. Well, as with many other technologies, a pioneer of this software technology trend first showed up as an open source concept.
mfsBSD – The Swiss Army Knife for FreeBSD system administratorsmfsBSD is a toolset to create small-sized but full-featured mfsroot based distributions of FreeBSD that store all files in memory (MFS) and load from hard drive, usb storage device, optical media or network.
How To Make Memory File System In FreeBSDMemory File System is a very good option for your own – customized FreeBSD system. Soon after FreeBSD CD (or USB) boots with MFS, it loads all the necessary files from the root directory in memory the same way as if these files were in the root directory on your hard disk (usually /dev/ad0s1a).
Manipulating map data using QGISIn this article, we will examine how to create and manipulate shapefiles. In the previous two articles we configured Geoserver and Postgres with PostGIS extensions to serve our map data.
IPv6: Open with CareDespite the promise of improved security, the move to the next-generation Internet protocols will create short-term problems for your network. Here are six tips to keep in mind in planning your transition to Ipv6.
Puffy The Hobbit – The Challenge of Porting GNOME 3 to OpenBSDAfter a recent proposal from Lennart Poettering for GNOME to include more Linux specific technologies like systemd (and basically become a Linux-based OS), I thought it would be interesting to show some of the challenges and constant battle that is to port this Desktop to BSD systems and more specifically OpenBSD.
What It Takes Starting and Running an Open Source Certification Program, Part IIIThis is the third part in our series on what it takes to run an Open Source Certification Program. In Part I we discussed “People”, the kinds of people you will need to help you run a Certification Program for your most excellent software.
Количество страниц: 52
Содержание номера:Larger scale FreeBSDI’ve often joked that it’s quite easy to manage one FreeBSD machine or one thousand, but if you have ten machines it can be quite a bit of work.
DragonflyBSD news: Testing Hammer Deduplication on Real-world DataIf you’ve been in the market for storage devices lately, you may have noticed a trend. Prices for various storage devices are generally determined by size, then speed, and then the whole price is increased by the features that come with that disk appliance.
PC-BSD’s New Control PanelThis article introduces the new Control Panel that will ship with PC-BSD 9.0. Readers are encouraged to try out the Control Panel prior to release by downloading a PC-BSD 9.0 testing snapshot or building the Control Panel on a PC-BSD 8.x system or a FreeBSD 8.x system that has Xorg configured.
Using POSTGIS tabular and geographic data with FreeBSDIn this article, we will look at extending our GIS server to use PostGIS.
Collectd – A look at the Systems Statistics Collection DaemonSystems Administrators need a variety of tools to properly monitor and tune their systems to the various loads…
Using Memcached for High Scalability Web ServicesBeen creating web services/ applications for 6 years and until recently decided to try out memory caching technology instead of hitting up the ole SQL server for the same records over and over again.
LDAP Authentication and Authorization of Unix Users Under OpenBSDUnlike most Unix-like operating systems, OpenBSD does not come with PAM nor nsswitch which made it tedious to authenticate local users against a remote database like LDAP. That was until ypldap(8) came along.
Building a complete intrusion detection system with Snorby on BSDFreeBSD and OpenBSD are a popular choice for installing the open-source Snort intrusion detection. Documents have been written in the past for popular analysis tools such as BASE and Sguil, however nothing extensive has been created for Snorby.
Full Disk Encryption on FreeBSDOn systems (for instance laptop computers) that may be physicaly accessed or stolen by untrusted persons, encrypting sensitive pieces of data should be mandatory.
What It Takes: Starting and Running an Open Source Certification Program, Part IILast month, in the first article in this series, we discussed the People aspect of running an Open Source certification program such as the BSD Certification Group (BSDCG). We discussed the types of people you’ll need in your program- SMEs, Writers, Translators, Technical Experts, Managers, the Advisory Group, and your Psychometrician.
Interview with Paul SchenkeveldPaul has participated in all nine EuroBSDcon editions so far and visited BSDcan and AsiaBSDcon several times. Today he is a member of EuroBSDcon 2011 comitee. In this months issue he will answer a few of our questions about the upcoming European BSD conference.
Количество страниц: 56
Содержание номера:Introduction to OpenSSL: Command-line ToolThe article describes the command-line utility of openssl. It is a tool that supports encryption and decryption, message digests, key generation and exchange and ssl channel manipulations.
Introducing FreeNASTM 8.0On May 2, 2011 the much anticipated redesign of FreeNAS was released. This article introduces FreeNAS 8.0, describing the reasons for its redesign, the current and upcoming features, the graphical administrative interface, and where you can find additional information.
A Puffy In The Corporate Aquarium – Success story: OpenBSD as an Enterprise DesktopWhile OpenBSD 2 is well known for its use in infrastructure services (MTA, DNS, firewall…) or appliances, this article will focus on a less known application: the use of OpenBSD as a Joe User Desktop.
Installing FreeBSD with PC-SYSINSTALLSeveral months ago, the PC-SYSINSTALL system (The installer for PC-BSD 8.0 and higher) was merged into FreeBSD CURRENT, in preparation for FreeBSD 9.0.
An introduction to GIS on FreeBSDGeographic information systems (GIS) are rapidly gaining popularity both commercially and on the Internet, and used with location aware devices such as mobile phones can be a powerful tool for aiding productivity.
Exploring The Powers Of The Cloud – Deploying Eyeos On BSDEver thought of running things in the cloud? How about doing that from your own server, without any extra effort or cost? We take a look at eyeOS, a cloud OS, and as usual, we do so on BSD.
NanoBSD and ALIXIn the previous issue of BSD Magazine, Bill Harris described how to do a basic installation of FreeBSD on a PC-Engines ALIX board with a Compact Flash card. This is a great way to get started, but there are some risks to this approach.
Mutt On OS X – Part IIIWhen we last left our heroes (in April, 2011 issue of BSD Magazine), I had briefly discussed searching our Mac’s address book as well as begin the process of setting up a complex, multi-account Mutt setup. In this article, I’ll go a bit deeper into setting up Mutt to make the most of Gmail’s features, as well as a way to handle attachments on your Mac.
OpenBSD NetworkingOpenBSD has an often mistaken image across the world that it stands for cryptography and crypto alone. Only for security applications OpenBSD is a good choice. This is what I used to think till I started looking at its IPsec stack in 2003.
OMAP3 Full Support is Coming Soon in FreeBSDThe trend in the FreeBSD development is bringing FreeBSD for new sets of hardware. The OMAP™ 3 family of multimedia applications processors from TI introduces a new level of performance that enables laptop-like productivity and advanced entertainment in multimedia-enabled mobile devices.
What It Takes – Starting and Running an Open Source Certification Program, Part ISo you’re all excited about your new software and its amazing capabilities to change the world. You truly believe that if only more people knew about it and were competent at using it, the world (or at least the information technology world) would be revolutionized.
Interview with Rafal JaworowskiRafal Jaworowski is a co-founder of Semihalf, where he is leading the operating systems department. With over 12 years of experience in the embedded systems field he has ported FreeBSD to various ARM and PowerPC systems, designed and developed device drivers and kernel infrastructure components, which are embedded in commercial products and installations. He contributes to the FreeBSD Project as a src committer. He has earned a M.Sc. degree in Mathematics.
Количество страниц: 56
Содержание номера:Introduction to the Z ShellIn this modern age of computing, we are offered many choices with regard to how we might interact with our machines.
Supporting Multiple Desktops in PC-BSD 9.0Beginning with version 9.0, PC-BSD will allow the selection of multiple desktops during installation. This article describes what changes were needed to allow for multiple desktop support and how you can help the PC-BSD project in this endeavour.
DragonFly News
Evolution of an OpenBSD PortIn this article I’ll talk about the evolution of the OpenBSD port of radicale (http://www.radicale.org/), a nice small, simple CALDAVbased calendar server written in Python by Guillaume Ayoub.
FreeBSD & Alix A pint sized install of an Enterprise OSThe embedded device or Single Board Computer (SBC) market has for the most part, been dominated by variety of Linux derivatives.
Mono (C# and the .NET Framework) on FreeBSDThe .NET Framework and the C# language have simplified the software development process in many ways.
Drupal on FreeBSD part 6In this the last article in the series on the Drupal Content Management System, the author looks back at what has been covered in the previous 5 articles and shares his real world experience with Drupal.
Backups – Made Easy A fast solution to a real problemWhen you have to do a major Operating System or Application upgrade, this script and server with big disks, will get the job done.
Fighting DDoS Attacks with PFFor a long time, Denial of Service attacks were disregarded, as they were considered to be the work of script kiddies.
The MacOS X Command LineMy wife thinks I bought my Mac laptop to use as a status symbol. But every hacker knows I bought it because I wanted a decent Unix laptop.
Implementing OpenSMTPD An Independent Reference DocumentOpenSMTPD is one of the mail servers included with OpenBSD. Configuring OpenSMTPD is more readily understood and comparatively less complex than configuring Sendmail.
License Wars!When I sat down to brainstorm on this month’s article, I decided to write about something out of the ordinary. Obviously, the topic had to be related to BSD, yet, I was determined to touch upon something that is a bit above than just being ‘geeky’. Why? Simply to make BSD fanatics proud, and at the same time show non-BSD fans how great the world of BSD is!
Allocating Dynamic Memory with ConfidenceEmbedded software applications face many challenges that are not present on desktop computers.
Количество страниц: 52
Содержание номера:Interview with Dru LavigneDru Lavigne is a network and systems administrator, IT instructor, author and international speaker. She has over a decade of experience administering and teaching Netware, Microsoft, Cisco, Checkpoint, SCO, Solaris, Linux and BSD systems. She is author of BSD Hacks, The Best of FreeBSD Basics, and The Definitive Guide to PC-BSD.
Why You Use FreeBSD Just May Start With A ‘Z’You may have been using FreeBSD for a long time. You may have just started using it. Regardless of how long you’ve been using it, whether it’s been fifteen years or fifteen days, you have needs, and FreeBSD fulfills some or all of them.
OpenBSD improves upon /etc/rc.d/The OpenBSD developers did not adopt a change like this until they were sure they had a mechanism that was both simple to implement and simple to use.
DragonFly NewsThere’s been some dramatic changes for DragonFly in the past month; all positive but having significant effects.
Package Management for the upcoming PC-BSD 9Among the various improvements planned for PC-BSD 9.0, among the largest of these is the refreshed PBI package management format.
Converting a Physical Partition with FreeBSD to a vmware ImagePortability is something people increasingly value, because it has a number of advantages – you can, for example, carry your desktop (or server) anywhere with you and thus also all your very important personal data that you have created over some time, or perhaps over many years.
Build appliances with QEMU and OpenBSDOpenBSD is the slimmest desktop OS. It is complete, functional and usable on any computer as long as your expectations are that of an engineer as opposed to a user.
Drupal on FreeBSD part 5Continuing the series on the Drupal Content Management System, we will look at adding discrete PHP and Javascript code to our pages.
Mutt On OS X part 2Last time (BSD Magazine 02/2011), we installed Mutt on OS X and read and sent mail from a Gmail account. This month, we’ll get one step closer to replacing Mail.app by learning a way to handle multiple accounts and how to search our Mac’s Address book from within Mutt.
Realtime Weather Data EMWIN on FreeBSDHave ever run to the TV, turned on a radio, or browsed to a weather site, just to find out what the weather conditions are, or about to become? You can now have data delivered right to server, use in a web site, or sent as notifications to pagers via e-mail.
Benchmarking Different Kind of StorageIn this article we will examine 2 types of storage: an iSCSI and a local hard drive.
Content Management Made Easy The Open Source Way!We take a look at the open-source Content Management Systems available for your enterprise website.
Количество страниц: 52
Содержание номера:Ramblings from the Rogue AdminFreeBSD is a rapidly evolving target, which can be a surprise to many people used to FreeBSD.
DragonFly NewsFreeBSD is a rapidly evolving target, which can be a surprise to many people used to FreeBSD.
Run your Phone System on OpenBSDWho says you can’t run your telephone system on the most secure OS around? Not me, for sure: I run two Asterisk installations on OpenBSD.
A quick look at the upcoming PC-BSD 9Even though the release of PC-BSD 9.0 is still a little ways off in 2011, there has already been countless hours of work put into it, bringing many exciting new changes and features.
Drupal on FreeBSD part 4We introduce a WIFI authentication environment using 802.1X with a RADIUS server (FreeRADIUS), a central database (like OpenLDAP) to store user and password, and using MSCHAPv2 protocol to avoid third party supplicants.
Using FreeBSD to authenticate users with OpenLDAP and FreeRADIUSIn this article you will learn how to Install an operating system on an ALIX card. It’s a an invaluable tool for a System Administrator. Following this guide will help protect your internal network from the hostile Internet!
How To Setup OpenBSD On The Embeded Alix CardIn this article you will learn how to Install an operating system on an ALIX card. It’s a an invaluable tool for a System Administrator. Following this guide will help protect your internal network from the hostile Internet!
Setting up Git and Mercurial ServersBlender is a powerful software, but can also be daunting, especially for BSD users, as the award-winning software isn’t yet officially favored on BSD. Fear not! Let’s explore this wonderful tool, starting with the user interface.
The Wonders Of BlenderBlender is a powerful software, but can also be daunting, especially for BSD users, as the award-winning software isn’t yet officially favored on BSD. Fear not! Let’s explore this wonderful tool, starting with the user interface.
Useful OpenBSD ToolsGenerally speaking the UNIX world is famous for the rich set of tools it provides and the way it integrates with the rest of the system.
Количество страниц: 48
Содержание номера:ZFS and FreeBSDThe Zettabyte Filesystem (ZFS) is one of the most advanced open source filesystems available today. Its design implements several revolutionary ideas with focus on data consistency, performance and ease of use.
Network transparent rate limitation with ipfwIn this article I will explain how to setup a transparent bridge between your LAN and your Firewall/router. With “transparent” I mean that you won’t need to do any change on your network in order to use it.
Building an iSCSI storage with BSDHighly loaded databases need a fast and reliable storage solution, something like a big server with many hard drives, probably with 4, 8, or 16 drives. Also, many 1U servers do not have the necessary storage capacity to offer services that need it.
How to setup a USB Memory stick for installing a pfSense SoHo Firewall/RouterThis article covers the installation and initial configuration of a pfSense Firewall / Router on a small form factor PC.
Mutt On OS XWhenever my boss walks by my desk, he can’t help but ask, „Why do you insist on using the command line for everything? Are you stuck in the 1970’s or something?”…
The Missing Links to Strategic ImplementationIn regards to growth and strategy, the father of management and strategy, Peter Drucker was wont to say, “Everything must degenerate into work if anything is to happen.”
Browser WarsWith the rise of the Internet, there has been a considerable increase in the number of web browsers available for BSD platforms.
Interview with Dan LangilleBSDCan 2011 – An interview with Dan Langille, who will give you a closer look at the upcoming conference.
PC-SYSINSTALL – A new system installer backend for PC-BSD & FreeBSDA presentation from BSDCan 2010 is an example of what you can expect from this years Conference.
Количество страниц: 48
Содержание номера:Drupal on FreeBSD – part 3Continuing the series on the Drupal Content Management System, we will look at creating a store front for our new website using CCK and Views.
Email MX server in FreeBSD – Confguring FreeBSD as a mail MX server with PostfxThis is a tutorial on how to setup a mail MX server using Postfix.
Installing NGINX and PHP 5.3.x on FreeBSD 8.1Have been using Apache as my default web server on FreeBSD servers since departing from IIS 4.0 and NT systems in 1999. Apache has always performed great on my installations and give the Apache Foundation great praise.
Text Terminal magic with tmuxOnce you get used to something you seldom like to go back to old ways. So much so that you get uncomfortable without it.
Writing ‘bots using XMPPOne of my favorite topics, using XMPP/Jabber for productive, real world applications!
How to quickly make a bootable USB stick with FreeBSDThis article covers the steps needed to make a bootable USB stick with FreeBSD – a quick howto that also applies to a USB drive.
FreeBSD and simple char device driver for real PCI-hardwareThe FreeBSD operating system captivates the hearts and minds of it’s fans so much, that finds it’s way in very diversive industries such as hosting projects and backbone routers. It can run on small embedded devices, as well as on large, multi-core systems.
BSD’s and Solaris on the Desktop. Are they ready to serve?As I am a great unix fan, I use BSD daily, but I mainly use the beast on the servers. In my company, we run Linux on Desktops and I would like to change that too. Therefore I underwent this venture in order to see whether Unix is ready to replace Linux on the desktop or not.
Games Geeks Play!In this article, we explore the various gaming options available for the BSD users.
Why can’t offce employees get along with open source offce suites?I have been working for 6 years now in an office setting. Since the organization I work for does not have that “big” funds for purchasing bleeding-edge software, we put our hands on some open source counterparts of the proprietary ones.
Количество страниц: 48
Содержание номера:Drupal on FreeBSD – part 2In the previous article in this series, we looked at installing the Drupal Content Management System. We are now going to look at configuration, templates, modules and adding content.
An Absolute Beginner’s Guide To Using The Command Line Interface In BsdLife exists beyond Linux. There are other Open Source operating systems such as BSD and OpenSolaris. Introducing a Linux user to BSD is no big deal, considering the fact that most BSD versions now employ either KDE or GNOME. Read on as we bring explore the BSD command line.
Backup your laptop from anywhere to your home server with openvpn, rsync and sshIn this article I will explain how to setup a very simple backup system based on standard unix tools and two shell scripts to backup your laptop from anywhere if you have an internet connection available.
Authenticating NAT with authpfNAT (Network Address Translation) is a way to (hide) several hosts behind a gateway. It operates on IP packets (layer 3) by rewriting source address of each one. It should be noticed that another mechanism called PAT (Port Address Translation) operates on TCP/UDP ports (layer 4).
Xmodmapon the way to writing hieroglyphs quicklyThis article is about how to make your own Xmodmap map – a definition for a keyboard layout in Linux/Unix. Presented is a sample Xmodmap keyboard map with four keyboard layouts that users can toggle with by Caps Lock: 1) Standard English keyboard; 2) IAST keyboard layout for transliteration of Sanskrit; 3) a layout to be defined by users; 4) keyboard layout for Devanagari.
FreeBSD Binary UpgradeAfter We install FreeBSD system, we have fresh packages and up to date base system, but as new RELEASE appears its good to update to get new features and bugfixes.
Introduction to WebDAVWebDAV is an extension of the HTTP protocol that performs remote Web content magagement, thus turning the Web into writable media.
Managing software with NetBSD’s pkgsrc packaging systempkgsrc is NetBSD’s package management system. But it supports far more than just NetBSD. At last count, over 11 distinct operating systems were supported by pkgsrc.
Количество страниц: 52
Содержание номера:Commissioning FreeBSD with the Drupal Content Management Framework – Part 1With nearly 6000 modules and PHP support Drupal offers a sophisticated web development platform as well as a thriving community. Drupal, originally conceived by Dries Buytaert, has a reputation of being an extremely capable DContent Management System (CMS) albeit with a steep learning curve. While many criticisms concerning the complexity of the interface will be addressed in the forthcoming Drupal 7 release (which is currently in the alpha stage), Drupal 6 excels in stability, flexibility and high quality code. The developers also subscribe to a transparent policy towards security issues, and have a dedicated security team which ensures that core modules remain high quality. Used as the basis of many high profile sites.
Building VPNs on OpenBSDA VPN is a network made up of multiple private networks situated at different locations, linked together using secure tunnels over a public (insecure) network, typically the Internet. VPNs are becoming increasingly popular, as they allow companies to join the LANs of their branches or subsidiaries into a single private network (site-to-site VPNs) or to provide mobile employees, such as sales people, access to their corporate network from outside the premises (remote-access VPNs), thus making accessing and sharing internal information much easier.
Closed-source and unsupported drivers with FreeBSDSooner or later you come to a conclusion that you need to have an enhanced mobility throughout your home place. And you decide to purchase an Wi-Fi card and put it into a home gate-keeper. Do you know about troubles that could bring this simple transaction like WiFi network card purchase?Some might ask – is it necessary to buy a WiFi-card instead of a simple AccessPoint (AP)? At first glance you can figure out that there exist the fine models of ADSL-modems with wireless capabilities and that could work as AP. However, it should be noticed that: a) not all home connections to an Internet-provider go through a „copper” like phone- or cable-line; b) you simply need to add a WiFi-capability to an already working gate; c) a WiFi-card itself costs several times cheaper of AP.
I.T. certifications and the value I got in itJoshua shares his experience with our readers, this time about certifications.
Количество страниц: 43
Содержание номера:Interview with Dirk H. Schulz
Installing a Citrix Client on FreeBSDAs our computing needs change, so does our criteria for selecting an operating system. Today, my job and my family are in different cities.
Writing shellcode for Linux and *BSDA shellcode is a sequence of machine language instructions which an already-running program can be forced to execute by altering its execution flow through software vulnerabilities (e.g. stack overflow, heap overflow or format strings).
How To Convert Text to Voice Using Festival and Lame in FreeBSDIn 2007 I built a web-based IM/ Chat Service which was later launched as an iPhone web app. Making a long story short I retired the service in 2008 and that was that.
FreeBSD Squid proxy with Parental Controls How-ToTraditionally, web pages were served via a webserver such as Apache and transmitted via the network on port 80 to a web-browser.
The Difference Between FreeBSD and Ubuntu in a Not So Technical WayAs a system administrator, I have been using various distributions of Linux and FreeBSD. I am comfortable in a mixed environment of *nix operating systems to provide network services.
Количество страниц: 52
Содержание номера:Introduction to MidnightBSDMidnightBSD was founded in 2006 by Lucas Holt. The project is a FreeBSD 6.0 fork with an emphasis on creating a desktop focused BSD. While there are other BSD desktop projects (most notably PC-BSD and DesktopBSD), we wanted to create an entire desktop centered BSD from the kernel all the way up to the standard applications. We want a BSD that a grandmother could install and use.
The FreeBSD Ubuntu challenge FreeBSD makes a great server, but can it rise to the challenge of running Compiz as a workstation? One of the many criticisms of Open Source software (indeed even FreeBSD) is that it is not ready for the desktop.
Network monitoring with Nagios and OpenBSD PART 1So our OpenBSD-based network now includes redundant firewalls, domain name servers, a mail gateway and a web proxy cache. (Read previous issues of BSD Magazine) All the services provided by these machines are particularly critical and can’t afford even minimal downtime. Redundancy may give us the time to recover a failure before having angry users trying to knock down our door, but it doesn’t free us from the responsibility to detect and solve ongoing problems.
Replacing Microsoft Exchange ServerInstalling set of open-source programs without lack of functionality Instead of Microsoft Exchange Server. This way Groupware-part will be replaced on Horde Groupware.
Maintenance Systems over BSDI was talking in previous articles about how to run applications widely used in the Industry that can be supported by BSD apart of classical IT services. As clear example of this is SAP Suite. SAP covers all possible asset management to control the cost related to production and also maintenance but as per tighted cost in investments today, the Plants must run 24/7 with maximum reliability and productivity possible.
Low Resource PCs with FreeBSDFreeBSD is my pick for best modern operating system to use on older PCs. I can’t believe how many used PCs end up as landfill while students, educators, low income families and others go without a computer at all.
Making the Unknown Giant Visible and KnownFreeBSD has the moniker Unknown Giant. I confirm that it is true in my place. I have asked system administrators, computer enthusiasts, and hobbyist about FreeBSD and they didn’t even know what I’m talking about.
Количество страниц: 52
Содержание номера:Building a Desktop Firewall with pf and fwbuilderThis article is an excerpt from the Firewalls and VPNs chapter of the book The Best of FreeBSD Basics (ISBN 9780979034220), published by Reed Media Publishing.
OpenBSD Some Interesting One Floppy SystemsOne floppy systems are very practical, as they usually have a specific goal, which cannot be said about all Live CD’s.
Remote Installation of the FreeBSD Operating System without a Remote ConsoleThis article documents the remote installation of the FreeBSD operating system when the console of the remote system is unavailable. The main idea behind this article is the result of a collaboration with Martin Matuska mm@FreeBSD.org with valuable input provided by Pawel Jakub Dawidek jd@FreeBSD.org.
OpenBSD as a Mail ServerIn a previous document, we built redundant firewalls using the CARP and PFSYNC protocols; these were the first building blocks of a hypothetical, penBSD-based, small private networkthat we are going to build step by step across several documents.
Performance Comparison ITTIA DB and SQLiteITTIA DB SQL and SQLite are used by software developers to manage information stored in applications and devices. Designed to be hidden from the end-user, these embedded relational database management systems are linked into the application or firmware as self-contained software libraries.
Interview with Jeff Roberson
FreeBSD Experience and Success Story
Количество страниц: 52
Содержание номера:Feature: WebHostingBuzz a hosting company all too familiar with BSDYou may have noticed WebHostingBuzz has started to advertise in BSD magazine in recent months. In this article, we catch up with Matthew Russell, CEO and Dennis Arkhangelski, Senior Technical Manager and ask them some questions about their use of BSD within the organisation.
Introduction to NanoBSDNanoBSD is a tool developed by Poul-Henning Kamp phk@FreeBSD.org. It creates a FreeBSD system image for embedded applications, suitable for use on a Compact Flash card (or other mass storage medium).
Secure Your Wireless with IPsecWireless access is all the rage. Wireless this, wireless that. Hot spots are turning up everywhere. Many are free. Many have absolutely no security. There are several in my neighborhood. I have no idea who is running them, but at least one is wide open.
Redundant firewalls with OpenBSD, CARP and pfsyncFirewalls are among the most critical network components, since their failure may cause entire groups of machines to remain offline. The damage may range from the public (web, mail, etc.) servers to become unreachable to the outside world up to being unable to surf this web site!
Easier WINE Installation on amd64 FreeBSDA short article on easier and faster method of installing WINE on an amd64 FreeBSD system.
Configuring IP-Based SSL on multiple hosts with Apache and FreeBSDI have a very large PHP/MySQL application running on FreeBSD 6.0. Before we go any further let’s get it out of the way: yes, I should upgrade to a more current version, but when you have a big system running a lot of sites in a live environment, well, you often end up a couple of versions behind the most recent stable release.
BSD File Sharing – Part 4. SSHLast time I wrote on FTP and mentioned its security weakness, this time I intend to write on sharing and transfering files using its encrypted alternatives sftp, scp, and on fuse-sshfs.
BSD Opinion Reflections of a Sys-adminA sentimental Rob Somerville reflects on his experiences with IT over the years and concludes that the BSD family is yet to be recognised as the shining example of good engineering and innovation we know it is.
SAP over BSDAs I did describe in the introduction BSD in the Industry last month, several applications are necessary to support all the Industry areas despite of traditional IT services and can be a big step in the BSD implementation into this world.
Количество страниц: 51
Содержание номера:MaheshaBSD: A Live CD Project From The Lake MansarovarMaheshaBSD is the name for a Live CD project. Why Mahesha? What does it mean? Mahesha is one of the 1008 names of Lord Shiva – Supreme God of the universe who stands above all gods. This name was chosen because Shiva’s weapon is the same as the FreeBSD’s one – the trident. There is yet another important correlation – supremacy of the BSD code, which (as many IT professionals believe) stands supreme above all operating systems. The connection of Lord Shiva and BSD is therefore logical.
OpenBSD as a Primary Domain ControllerOnce a Windows-based network grows beyond around a dozen computers, setting up a Primary Domain Controller to simplify and centralize the management of users, computers and network resources becomes a must. But does the Domain Controller necessarily have to be a Windows machine, thus meaning the end of our project of a completly OpenBSD-based server network? Of course not! Once again, OpenBSD comes to our rescue and, with the help of a few additional pieces of software, it will turn into a full-blown, secure and reliable Domain Controller.
FreeBSD MySQL Clustering How-toThe PHP, MySQL and Apache stack is a very popular implementation on standalone BSD servers but in demanding high availability [HA] environments the twin spectres of redundancy and fail-over rear their heads. In these scenarios, it is essential to eliminate the single point of failure which is the enemy of 100% uptime.
BSD FILE SHARING – Part 3. FTPLast time I wrote on SAMBA on different BSD’s. This time I am going to dedicate the article of the series to FTP. Some people do not know that the FTP protocol is the true BSD heritage, as it originated in the 1970’s at Berkeley University, so it is the right thing to dedicate it some space in the BSDMag anyway.
Exploring HAMMEROne of DragonFly’s features is a new file system, called HAMMER. HAMMER has, to quote from the man page, instant crash recovery, large file systems spanning multiple volumes, data integrity checking, fine-grained history retention, mirroring capability, and pseudo file systems HAMMER is available by default on DragonFly BSD.
Embedded OpenBSDUnix-like operating systems aren’t picky at all. Despite the extreme physical conditions, they can take root on those old computers where most (proprietary) operating systems risk extinction and help them, after years of faithful service, to start new lives as firewalls, routers, proxies… But sometimes this is not enough: servers must be reliable and old computers aTahomare (guess what?) …old, and this increases their risk of disease. That’s why embedded systems are a great option: they are (relatively) inexpensive, silent, small, reliable… What else could you need? Ok, you have to learn to cohabit with very basic hardware, but the right OS, with the right configuration, will wallow in it!
Making Sense of Data Management on Intelligent DevicesThe demand for embedded devices is growing rapidly, and there is a clear need for development of advanced software to deliver new features on limited hardware. Data management is a critical component in these new software systems. Embedded databases are used by portable media players to store information about music and video, GPS devices to store map data, and monitoring systems to log information. These and other leading-edge industries have learned the importance of managing data reliably with a relational embedded data management system.
BSD in the IndustryAfter several years of slavery with windows based programs, many programs related with Industry or Engineering are opening the doors to the new trends of UNIX like OS. This is a natural evolution because as the Economy crisis strikes on whole World, the IT infrastructures are also under pressure to decrease at maximum the overall cost.
Количество страниц: 60
Содержание номера:Modern FreeBSD InstallAll these years sysinstall(8) was helping us to install FreeBSD with most needed options.
X11 without dbus/hald and with three kingsFreeBSD Handbook suggests (check section 5.4.2 Configuring X11), that running sysutils/hal (hald) and devel/dbus daemons is mandatory to have working x11/xorg … nothing further from the truth.
Converting a FreeBSD Port Using PBI BuilderThis is an excerpt from the “Becoming a Developer” chapter of the recently released book, The Definitive Guide to PC-BSD.
BSD File Sharing – Part 2. SAMBALast time I wrote about NFS on different BSD’s. This time I am going to dedicate this article of the series to SAMBA.
Running VirtualBox OSE with VNC under FreeBSD 8.0VirtualBox is a type 2 hypervisor that sits directly on top of the host-server OS and is suitable for server, desktop and embedded applications. It will run most OS’s as guest with few exceptions, and like Vmware * there are many pre-built VM’s available.
FreeBSD Firewall with Transparent Proxy Server, DHCP Server and Name ServerIf you need Internet-sharing to be available to share allow your network to access the web using only one public IP Address, you need to setup a gateway.
The Squid and the BlowfishWe have grown so much accustomed to Internet access on our work computers, that we can hardly imagine what people ever did all day long on their workplace before!
Hosting Environment Network and Firewall Redundancy with the BSDsWith many large websites and hosting providers relying on BSD operating systems to power their businesses, it only makes sense that many smaller providers take the same path.
Comparison of FreeBSD And OpenBSD: Not One Cake But The Two OnesThe purpose of this article is to highlight some differences between the two BSD operating systems – FreeBSD and OpenBSD.
Introducing Beastie to StrangersWhen PC-BSD 8 first came out back in February, I installed the operating system on two of my machines and was very impressed with the new release.
Количество страниц: 60
Содержание номера:Build Your Own FreeBSD Update ServerExperienced users or administrators responsible for several machines or environments, know the difficult demands and challenges of maintaining such an infrastructure. The article outlines the steps involved in creating an internal FreeBSD Update Server.
Using OpenBSD and PF as a Virtual Firewall for WindowsThe Windows firewall, by default, has many open ports to the local network, like the file and print sharing service ports, which are the source of many security holes. How to protect a Windows host with a basic configuration of an OpenBSD virtual machine with PF as a NAT router and firewall?
Keeping FreeBSD Applications Up-To-DateAn important system administration task, and a principle of running a defensible network, is keeping operating systems and applications up-to-date. In this article you will find multiple ways how to complete this task.
Spam Control with a stock OpenBSD installEver since e-mails became ubiquitous unwanted e-mails or spam also known as UCE (Unsolicited Commercial E-mail) or UBE (Unsolicited Bulk E-mail) also became popular. Any chance to control this? OpenBSD has an excellent method to fight spam and this article is about it.
Choosing and Installing a Window Manager with FreeBSDStep by Step installing with comments and advice. One of the many attractive features of BSD is that the end-user is not tied to a particular desktop or windowing environment.
BSD Live DesktopsLast week Zafer Aydogan, founder of Jibbed, and Stefan Rinkes, founder of GNOBSD, agreed to talk with Jesse Smith about their projects (from which BSD community will surely benefit), themselves and BSD.
BSD goes to the Office: Can BSD compete in a real life consulting workplace?A reminder on our last issue topic- an article about an experiment to determine a viability of BSD desktop in a real world high pressure consulting engagement. There are many articles that expound on the succes of Linux as desktop, and quite a few accounts of using a Linux desktop in this case or that case. But this one is written not from a perspective of a journalist or home user, but from a system administration and consulting perspective.
Количество страниц: 60
Содержание номера:A first look at PC-BSD 8 releaseWith the release of FreeBSD 8.0 it’s only a matter of time before we can expect the next version of PC-BSD. At the time of writing plenty of work was being done to prepare PC-BSD 8.0.
Installing and securing an Apache Jail with SSL on FreeBSDThe Apache HTTP server developed by the Apache Software Foundation 1 is the most popular webserver software in use today installed at over 100 Million 2 sites worldwide.
The gemstones for FreeBSDBuilding web applications has become so popular that you can’t imagine Internet as a static system any more.
OpenBSD, NetBSD and FreeBSD as file sharing servers – Part 1 – NFSHow to share files between multiple operation systems and keep your data safe.
IPsec VPNs An Introduction to IKE and IPsecThis article concerns itself with IPsec and IKE, the protocols used to build IPsec based VPNs (hereafter referred to simply as a VPN).
LDAP on FreeBSDKeeping your information synced across multiple systems can be a pain. While there are many ways to ensure consistency in your media and documents (rsync and scp work wonders in this area), there are not too many options for maintaining your address book.
Secure and stable mailservers with OpenBSD and qmailSecure and stable email servers are important for everyone who is using email. Most of the communication in companies is done by sending and receiving emails. So, reliable email systems are very important for each Internet company.
Developing Secure Storages: Now On FreeBSDDevelopers of server-side, desktop and mobile applications working with FreeBSD now get access to Solid File System – a well-known component designed by EldoS Corporation. FreeBSD-developers have an ability to store documents and files in a highly secure robust and flexible file system with no run-time fees. Clean room implementation allows royalty-free business applications.
Web Server BenchmarkingI cannot lie; I had an extremely difficult time determining what to write about for this issue of the magazine.
OpenSSH: common but underappreciated
Interview with Olivier Cochard-Labbe, Founder of FreeNASThe FreeNAS project (http://freenas.org/freenas), founded by Olivier Cochard-Labbe in 2005, is an open source network attached storage distribution. The project offers a simple, elegant way for home users and network administrators to host data on a small, stable platform at very low cost.
Количество страниц: 60
Содержание номера:Keeping FreeBSD Up-To-Date: OS EssentialsAn important system administration task, and a principle of running a defensible network, is keeping operating systems and applications up-to-date.
Using BSD for your StudiesAbout four years ago I was starting my undergraduate computing degree. I knew that UNIX-like operating systems had proven themselves in the server room, but how would they fare in the lecture theatre?
The FreeBSD ChatterboxDay in and day out, your FreeBSD sits there quietly, processing its workload. It never complains or asks for any favors, but what would it say if it could talk?
Encrypting the FreeBSD root file systemSystems are only as secure as you make them. Thankfully, FreeBSD offers an excellent range of tools and mechanisms to insure that all your security needs are met.
Setting up PC-BSD as a serverPC-BSD is so easy to install and the KDE-desktop easy enough to use that we might almost forget it’s roots as server operating system. Now, and in the future, the majority of desktop users might not consider this piece of information of any value.
How to Build a Scalable Search Engine Using the BuildaSearch Web ServiceBuildaSearch was featured in the 4/2009 issue of BSD Magazine. While other articles do a fantastic job focusing on core BSD technology, I feel that it is also important to cover web services powered by BSD systems.
Is NetBSD ready for a desktop?In this article I am focusing on the usability of the NetBSD as a desktop. I would like to show what NetBSD can do today and whether it is mature enough to challenge PC-BSD or Linux. If you want to know, keep reading.
FreeBSD on the SheevaPlugThough NetBSD is better known for supporting a wide variety of processors and systems, FreeBSD has an active embedded component, as well. In this article, we’ll take a look at the ARM-based SheevaPlug and show you how to boot your Plug using FreeBSD.
Email server in FreeBSD Configuring FreeBSD as a mail server with Postfix and Dovecot in FreeBSD 7.XThis tutorial is a step by step guide on how to setup your own mail server using Postfix as the Mail Transfer Agent(MTA) and Dovecot as the IMAP server and as the authenticating agent for Postfix. These instructions were tested with FreeBSD 7.2
Monitoring OpenBSD with SymonOnce you have your OpenBSD Server running, you might want to monitor your machine. There are several ways to do this and there is a large amount of tools you could use for it.
BSD as the Platform for Operationalizing Organizational Flexability via a Data ConcourseA major change is about to take place in large organizations worldwide and BSD is positioned perfectly to play a starring role.
Living The PC-BSD LifestyleSome people are Mac, some are Windows, I am PC-BSD. PC-BSD is more than an operating system, it’s a lifestyle.
BSD Tips&tricsIn this issue of BSD Tips and Tricks, readers share some of their favourite tips for solving problems and saving time.
How to Rename Ethernet Interfaces Under FreeBSDI haven’t written about things like this in a while but the question was put to me and I thought it’d be worth jotting something down.
Year 40 of the UNIX epoch beginsAs many UNIX/Linux users know, all UNIX like operating systems start the count of time at January 1, 1970, the start of the UNIX epoch. Yes, I know that this is not precisely when the UNIX operating system was born but for our purposes it will do. It is similar to the idea that January 1, 2010 A.D. does not really represent the precise time since the birth of Christ (astronomers have proven this to be off by a few years) but we still use it as a time marker.
Количество страниц: 84
Содержание номера:Installing OpenBSDOpenBSD 4.5 is the latest version of OpenBSD released in May, 2009. This article will walk you through its installation in great details. For a quick start boot the attached DVD with OpenBSD 4.5.
Postgresql, shared memory and BSDThis series of articles will compare a basic installation of Postgresql on various flavors of BSD, and compare the performance between them given similar shared memory settings.
Triple booting Windows 7, Ubuntu 9.04 and PC-BSD 7.1In this article we will give a step-by-step guide to installing three different operating systems on the same hard drive.
BuildaSearch a FreeBSD Web ServiceBuildaSearch is a web service which allows users to build a custom search engine or site search in less than five minutes. No coding skills are necessary when building a custom search. Users can customize their colors, backgrounds, logos, and search results.
Web Servers for Embedded NetBSDWeb-based user interfaces have become ubiquitous for all sorts of electronic gear these days. If you are building a network-capable device, chances are you will want to add a web server to your device’s software, as well – it’s generally cheaper than a hardware interface and far easier to change or update.
Out-of-the-box sshfs on NetBSD 5.0Sshfs makes it possible to mount a remote directory tree onto the local machine. Only ssh access is required for this.
FreeBSD Security Event AuditingSecurity is increasingly a hot topic in systems administration. Vulnerable systems get patches, firewalls get set up and password policies are enforced. But in the end, all these measures cannot eliminate the risk of a system break-in. They can only reduce it.
Securing OpenSSH serverOpenSSH is free implementation of SSH suite. Many of us use it on a daily basis and got so used to it we couldn’t imagine our lives without it.
Staying Secure using PC-BSD“Help! Pop-ups are destroying my computer!” I cannot count how many times I have heard those words come from my brother’s mouth.
Stop Hackers With Protection ScriptI suppose you have a border server that is freely accessible from the internet or you just want to have a secure machine. Whichever the case is, I will tell you my story.
OpenBSD on the Sharp ZaurusIf you look at the OpenBSD Platforms page (http://openbsd.org/plat.html) you’ll see Zaurus down at the bottom. Is it there just so that the OpenBSD team can safely say that they support a multitude of platforms, from Alpha to Zaurus?
Questions and Answer Session of the BSD Certification Group CommunityRecently, the BSD Certification Group (BSDCG) asked via their mailing lists for questions regarding the BSDCG or the BSDA exam, offering to answer them in this issue of BSD Mag.
Interview with Albert WhaleMy name is Albert Whale, the President of ABS Computer Technology. I am a resident of Pittsburgh, PA, and I work with my company on Security and Consulting opportunities on an international basis.
Interview with Matt JuszczakRecently I had the opportunity to sit down with Matt Juszczak creator of BSDJobs.net and ask him some questions about the project. I would like to thank Matt for taking the time out of his busy schedule to talk with me about the project. The following is a synopsis of that Q&A session.
Tips&tricks
Количество страниц: 68
Содержание номера:Installing FreeBSD 7.1 with Enhanced Security JailsThis article will guide people that are new to FreeBSD on installing the software and enhancing it’s security by setting up FreeBSD jails that will give service to for example an webserver.
OpenSMTPDIn this issue I will shamelessly take the opportunity to write about the smtp server that was imported into the OpenBSD source tree last November. It isn’t enabled yet, it isn’t even linked to the build, but it is doing good progress and this article will describe what it currently does.
Getting a GNOME Desktop on FreeBSDWhy would you want to install GNOME on FreeBSD? It’s a KDE system!’ This summarizes some remarks I got when checking out how to install the GNOME desktop environment on a FreeBSD box.
Packaging Software for OpenBSD – part 2In the last article in this series, we looked at how to package a simple piece of open source software for OpenBSD. In this article we build on what we learned last time and move onto some more advanced features provided by the ports system in order to package oftware with more complex needs.
A Jabber Data Transfer ComponentSo, you’ve got your Jabber server up and running, the family using it, and you’re still in contact with your friends on the „walled garden” networks. You’re having family meetings in using a conference room, and all the family communications are secure. What next?
Building a FreeBSD Wireless RouterWhy use a FreeBSD machine as a wireless access point? Don’t most Internet Service Providers give you a free modem/router? While this may be true most of the time, it is not always the case. Besides, building your own is easy, and it gives a great deal of options for both System Administrators and control freaks alike!
CPU Scaling on FreeBSD UnixComparing FreeBSD to other sollutions like Solaris or Linux implementations, that directly follow Intel’s defined C-states and P-states for CPU, FreeBSD goes a bit further by offering the end user every possible frequency that the CPU can run on, this may sound misleading, but things will be simple afte
LDAP Authentication on OpenBSD BoxesLDAP (Lightweight Directory Access Protocol) is a massively used protocol to store user’s information. This protocol is implemented in OpenLDAP, a directory software available on every operating system’s package manager.
FreeBSD and Snort Intrusion Detection SystemWhat is an intrusion detection system? The Intrusion Detection System shortly called IDS is a software and/or hardware designed to help you to detect attempts of accessing computer systems, mainly through a network, such as the Internet.
Building an Embedded Video Web Server with NetBSDWhile it’s safe to say that the recently developed USB video driver was built and tested using only a desktop “i386-compatible” machine, the beauty of NetBSD is that the same driver will work on any NetBSD-supported hardware. So grab your favorite embedded processor and let’s try some video.
FreeBSD TipsWhether you’re new to FreeBSD or have been using it for some time, learning a new trick or two can save you time and increase your user experience.
Maintaining System Configuration Files Using SubsversionRecently I was asked about maintaining a data center full of servers. More specifically about maintaining a repository of the configuration files for all servers in the data center. And this is what I am going to show you in this article.
Q&A about DtraceFederico interviews John Birrell and George Neville-Neil about Dtrace – a dynamic tracing system developed by Sun Microsystems
Количество страниц: 68
Содержание номера:Installing PC-BSD Fibonacci EditionMan pages? We don’t need no stinkin’ man pages. I don’t need to show you any man pages. Well, that being said, at least review the hardware requirements prior to selecting your computer platform.
Software management simplfied: PC-BSD and the PBI systemWhat is the best way of installing software on a FreeBSD-based system? The FreeBSD handbook doesn’t provide a single answer as both packages and ports have their benefi ts. All you have to do is open a terminal and…
Personalizing Your PC-BSD DesktopWhat is the point of having a personal computer if it isn’t personal? The vast amount of possibilities when customizing your PC-BSD desktop can be overwhelming. There are several aspects of PC-BSD that need to be understood before moving forward.
Using FreeBSD for Off-Site BackupsIt is becoming increasingly important for people to have backup systems in place. This is especially true for people who hoard multimedia content. What would happen if someone’s hard drive failed and it contained their entire music library?
Building NetBSD for Embedded Systems Using CygwinYou might think it is unusual that a magazine devoted to the *BSD operating systems would have an article about Cygwin, a Linux-like environment that runs on Windows.
ABC’s of ZFSZFS is a state of the art fi lesystem developed by Sun Microsystems. ZFS was fi rst introduced in the OpenSolaris operating system and was later ported to FreeBSD 7.
Django on FreeBSDDan Fairs, Director of Fez Consulting Ltd., a UK-based software development consultancy, introduces Django: a web framework for perfectionists with deadlines.
Open Source Studio to Transmitter Link (OSSTL)A local nonprofi t radio station owns a studio that provides feeds for two AM radio stations and one FM radio station. The content provided for the two AM station’s is mostly syndicated talk radio with a very little music content.
PC-BSD – Making Your Life EasierAccomplishing common tasks on PC-BSD may be executed effectively and efficiently by using built-in configuration tools and locating system settings that may increase overall usability and performance.
Interview with PC-BSDTo celebrate this issue of the magazine fully dedicated to PC-BSD, I had the opportunity to do a quick question and answer session with Kris Moore and Matt Olander.
Green Eggs & BSD…BSD is here BSD is there, BSD is everywhere. Well not exactly, but there certainly is a proliferation of BSD throughout the Internet. The problem is and quite honestly has been quantifying the impact of BSD on the corporate LAN.
Количество страниц: 68
Содержание номера:NetBSD InstallPatrick shows step-by-step how to install NetBSD- one of the four major BSD systems.
MirOS BSD: the peaceful operating systemBenny and Thorsten discuss the installation and configuration of MirOS BSD – a secure computer operating system from the BSD family.
BSD live CD’s – an entry level of acquaintance?In this article Jan looks at live CD’s based on BSD.
How it works? OpenSolaris, FreeBSD and OpenSuseThis article is a comparison of Opensolaris -200805, FreeBSD 7 and OpenSuse 11.
Multi-User ConferencingEric and Michele introduce you to the process of configuration of Jabber’s Multi-User Conferencing and show how to start up the conference room/chat server for your Jabber server.
GDB and you – part 1This first part of the series assumes a basic knowledge of the c programming language which is necessary to follow the examples.
Installing Prelude IDSIn this article Henrik goes through the steps needed to implement Prelude IDS on NetBSD.
If it moves – crypt it! Hard drive encryption on BSDMarko shows some of the best solutions for encrypting in BSD family of operating systems.
Packaging Software for OpenBSD – part 1In the first part of the articles series Edd demonstrates how you can make your own packages for OpenBSD.
Play Music on Your Slug with NetBSD [font="Tahoma"This time Donald wants to teach our Slug to play music and takes a brief look at the Slim data protocol.][/font]
Interview with Simon Burge, Antti Kantee and Greg OsterFederico interviews our guests about WAPBL that provides metadata journaling for file systems.
Review: Dru Lavigne’s The Best of FreeBSD Basics
Количество страниц: 68
Содержание номера:OpenBSD 4.3 Installation&ConfigurationIf you are new to OpenBSD distribution, Gilles guides you through the process of installing and configuring.
You have installed it? Now what? Packages!Peter gives you the kick-start on packages, shows how to use them effectively and without much effort.
OpenBSDGilles teaches how to provide the best dvelopment platform.You will find a step-by-step tutorial for development station, server development, setting up the accounts and mail notification.
BSD Certification by BSD Certification GroupMachtelt discusses the certification that is being developed by the BSD Certification Group Advisory Board- people who are actively involved in different BSD projects, ket figures in their communities.
Building an OpenBSD SAMP Server with Content Filtering ProxyIn this article Rob demonstrates how to build an OpenBSD server from scratch with Squid, Apache, MySQL, PHP and Webadmin, in order to allow you to serve web pages from your own network and cache the content reaching your browser.
OpenBSD as a DesktopPetr provides you with a guide for people who use Linux or FreeBSD and would like to give OpenBSD a try on the desktop and explains some general Unix routines.
Inside the PBI System…The auhtor presents PBI – PC BSD installer with its unique and very useful package management system and shows similarities and differences between other systems.
Connecting to Other IM NetworksEric and Michele follow up the article from the first issue, where you have learned how to install and configure one of the jabber servers. This time, they explain the mechanism to allow the creation of a gateway between the jabber network and closed networks- AOL Instant Messenger, Yahoo!, ICQ and others.
Kernel File System Development in UserspaceIn this article Antti describes the kernel as a programming and testing environment. He also describes the kernel code way of testing and developing – all that to make it more comfortable for the user.
Securing IM Using Jabber/XMPP and TLSThis time, the authors will discuss how to secure client to server and server to server communications using XMPP/Jabber features.
OpenBSD and Making MoneyEven though corporations accuse Open Source for being unable to bring in the profits, in this article Girish shows that it is a serious bussiness that can make you rich.
Absolute FreeBSD 2nd Edition – ReviewIn this article Xavier analyses the Absolute FreeBSD 2nd edition – the Complete Guide to FreeBSD, a book written by Michael W. Lucas
PC-BSD in SchoolsiXsystems presents PC-BSD in schools on the example of Polux School success story.
Interview with OpenBSD developer Damien BergaminiFederico Biancuzzi talks about WPA with Damien Bergamini, the developer who made a huge work for OpenBSD wireless subsystem.
Mac OS X – the Other BSDMikel King introduces Mac OS X – the other BSD.
Количество страниц: 68
Содержание номера:FreeBSD 7.0 installation & configurationThis magazine provides a DVD containing the installation program for the FreeBSD 7.0 operating system, its documentation, and over 700 applications. In this article, I will demonstrate how to install FreeBSD, configure KDE and sound, install additional software, and find resources to learn more about FreeBSD.
FreeBSD’s bsnmpAny large datacenter or network uses the Simple Network Management Protocol (SNMP). Many Unixlike operating systems use the Net-SNMP toolkit from http://www.net-snmp.org. While Net-SNMP is a powerful and flexible SNMP implementation available for many platforms, it does not support BSDspecific functions.
Pushing BSD as an open source desktopIt may come as a surprise for the majority of computer users, but open source operating systems have a long and solid track record. They form the backbone or crucial building blocks of the ICT infrastructure of companies and organizations. In a world where desktop computing has equaled Windows for such a long time, the ascent of the open source desktop may appear as something new but those desktops are firmly rooted in decades of development.
PC-BSD overviewEverybody wants a stable and secure operating system and wants it at the cheapest possible price. In most cases it is GNU/Linux. But what about when you want something different, something not quite like GNU/Linux? Then you would do well to have a look at FreeBSD. In this article I will take an overview of a certain FreeBSD distribution called PC-BSD.
Sguil 0.7.0 on FreeBSD 7.0Sguil (www.sguil.net) is an open source suite for performing Network Security Monitoring (NSM). NSM is the collection, analysis, and escalation of [network-based] indications and warnings to detect and respond to intrusions. The author has been using Sguil on FreeBSD since Sguil’s developer, Robert “Bamm” Visscher, created the application in 2001.
How to Dual-Boot Vista with BSD – a step-by-step approachWalk the aisles of your local electronics store and you will view rows of PCs with Microsoft Vista preinstalled. For users who choose to install BSD, they are left with few options – either they can wipe Vista from the existing drive or they can setup a dual-boot system giving the user a choice of operating systems to boot.
Keep smiling, waste spammers’ timeWhen you are in the business of building the networks people need and the services they need to run on them, you may also be running a mail service. If you do, you will sooner or later need to deal with spam. This article is about how to waste spammers’ time and have a good time while doing it.
Defense in Depth and FOSSProtecting your infrastructure is a tough job and one that requires a lot of attention. Meanwhile a lot of new tools are being published that can protect and some that can attack. This war between good and bad can take up a lot of resources, and how much is enough.
BSD 1/2008 NetBSD on the NSLU2If you own a Network Storage Link (NSLU2) from Linksys, you have a nifty, relatively inexpensive device with an Arm-5TE-compatible Xscale processor, 8 MB of flash memory, 32 MB of SDRAM, two USB ports, and a 10/100 Ethernet port.
OpenBSD pf – the firewall on fireIn this article we will take a look at the king of firewalls – OpenBSD pf. pf has an interesting history as it was developed due to some interesting licensing problems with the firewall code in OpenBSD at that time. This happened well over six years ago. A genius named Daniel Hartmeier set out to hack the OpenBSD kernel in a beautiful Swiss town and something that began as a patch to the kernel to add firewalling functionality has today become the ultimate tool not only for performing the tasks of a firewall but also for QoS, spam control and traffic normalization.
Instant Messaging with Jabber/XMPPInstant Messaging-What a Concept! To be able to talk, (or chat as it is commonly called), to someone on the other side of the planet in real-time. WOW! In the 1970’s, when instant messaging first appeared, it was used as an inter office tool, for users of systems like UNIX, to leave messages for others using the same machine, working it way up to a device to communicate with others in the local network.
Interview with FreeBSD developerOne of the major improvements in FreeBSD 7.0 is the performance increase that every owner of MP machines is experiencing. How did they get such a great result? I have interviewed Jeff Roberson, the creator of the ULE scheduler, to learn more about the work done by FreeBSD developers in SMP land.
