Sign up to save your podcasts
Or
Share 399: Comparing Sandboxes
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
399: Comparing Sandboxes
Comparing sandboxing techniques, Statement on FreeBSD development processes, customizing FreeBSD ports and packages, the quest for a comfortable NetBSD desktop, Nginx as a TCP/UDP relay, HardenedBSD March 2021 Status Report, Detailed Behaviors of Unix Signal, and more
NOTES
This episode of BSDNow is brought to you by Tarsnap
Headlines
Comparing sandboxing techniques
I had the opportunity to implement a sandbox and I'd like to write about the differences between the various sandboxing techniques available on three different operating systems: FreeBSD, Linux and OpenBSD.
Statement on FreeBSD development processes
In light of the recent commentary on FreeBSD's development practices, members of the Core team would like to issue the following statement.
Customizing FreeBSD Ports and Packages
A basic intro to building your own packages
News Roundup
FVWM(3) and the quest for a comfortable NetBSD desktop
FVWM substantially allows one to build a fully-fledged lightweight desktop environment from scratch, with an almost unparalleled degree of freedom. Although using FVWM does not require any knowledge of programming languages, it is possible to extend it with M4, C, and Perl preprocessing.
Nginx as a TCP/UDP relay
In this tutorial I will explain how to use Nginx as a TCP or UDP relay as an alternative to Haproxy or Relayd. This mean nginx will be able to accept requests on a port (TCP/UDP) and relay it to another backend without knowing about the content. It also permits to negociates a TLS session with the client and relay to a non-TLS backend. In this example I will explain how to configure Nginx to accept TLS requests to transmit it to my Gemini server Vger, Gemini protocol has TLS as a requirement.
HardenedBSD March 2021 Status Report
This month, I worked on finding and fixing the regression that caused kernel panics on our package builders. I think I found the issue: I made it so that the HARDENEDBSD amd64 kernel just included GENERIC so that we follow FreeBSD's toggling of features. Doing so added QUEUE_MACRO_DEBUG_TRASH to our kernel config. That option is the likely culprit. If the next package build (with the option removed) completes, I will commit the change that removes QUEUE_MACRO_DEBUG_TRASH from the HARDENEDBSD amd64 kernel.
Detailed Behaviors of Unix Signal
When Unix is mentioned in this document it means macOS or Linux as they are the mainly used Unix at this moment. When shell is mentioned it means Bash or Zsh. Most demos are written in C for macOS with Apple libc and Linux with glibc.
Tarsnap
Feedback/Questions
andrew - flatpak
chris - mac and truenas
robert - some questions
Send questions, comments, show ideas/topics, or stories you want mentioned on the show to [email protected]
View all episodes
By JT Pennington
4.8
9191 ratings
Comparing sandboxing techniques, Statement on FreeBSD development processes, customizing FreeBSD ports and packages, the quest for a comfortable NetBSD desktop, Nginx as a TCP/UDP relay, HardenedBSD March 2021 Status Report, Detailed Behaviors of Unix Signal, and more
NOTES
This episode of BSDNow is brought to you by Tarsnap
Headlines
Comparing sandboxing techniques
I had the opportunity to implement a sandbox and I'd like to write about the differences between the various sandboxing techniques available on three different operating systems: FreeBSD, Linux and OpenBSD.
Statement on FreeBSD development processes
In light of the recent commentary on FreeBSD's development practices, members of the Core team would like to issue the following statement.
Customizing FreeBSD Ports and Packages
A basic intro to building your own packages
News Roundup
FVWM(3) and the quest for a comfortable NetBSD desktop
FVWM substantially allows one to build a fully-fledged lightweight desktop environment from scratch, with an almost unparalleled degree of freedom. Although using FVWM does not require any knowledge of programming languages, it is possible to extend it with M4, C, and Perl preprocessing.
Nginx as a TCP/UDP relay
In this tutorial I will explain how to use Nginx as a TCP or UDP relay as an alternative to Haproxy or Relayd. This mean nginx will be able to accept requests on a port (TCP/UDP) and relay it to another backend without knowing about the content. It also permits to negociates a TLS session with the client and relay to a non-TLS backend. In this example I will explain how to configure Nginx to accept TLS requests to transmit it to my Gemini server Vger, Gemini protocol has TLS as a requirement.
HardenedBSD March 2021 Status Report
This month, I worked on finding and fixing the regression that caused kernel panics on our package builders. I think I found the issue: I made it so that the HARDENEDBSD amd64 kernel just included GENERIC so that we follow FreeBSD's toggling of features. Doing so added QUEUE_MACRO_DEBUG_TRASH to our kernel config. That option is the likely culprit. If the next package build (with the option removed) completes, I will commit the change that removes QUEUE_MACRO_DEBUG_TRASH from the HARDENEDBSD amd64 kernel.
Detailed Behaviors of Unix Signal
When Unix is mentioned in this document it means macOS or Linux as they are the mainly used Unix at this moment. When shell is mentioned it means Bash or Zsh. Most demos are written in C for macOS with Apple libc and Linux with glibc.
Tarsnap
Feedback/Questions
andrew - flatpak
chris - mac and truenas
robert - some questions
Send questions, comments, show ideas/topics, or stories you want mentioned on the show to [email protected]
More shows like BSD Now
View all
Software Engineering Radio
271 Listeners
The Changelog: Software Development, Open Source
289 Listeners
Security Now (Audio)
2,010 Listeners
LINUX Unplugged
268 Listeners
Talk Python To Me
585 Listeners
Late Night Linux
164 Listeners
Destination Linux
91 Listeners
Home Assistant Podcast
70 Listeners
CoRecursive: Coding Stories
190 Listeners
Late Night Linux Family All Episodes
46 Listeners
Linux Dev Time
22 Listeners
2.5 Admins
98 Listeners
Linux After Dark
29 Listeners
Oxide and Friends
62 Listeners
Linux Matters
22 Listeners