BSD Now

By JT Pennington

Created by three guys who love BSD, we cover the latest news and have an extensive series of tutorials, as well as interviews with various people from all areas of the BSD community. It also serves as... more

4.9

8989 ratings

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about BSD Now:

How many episodes does BSD Now have?

The podcast currently has 634 episodes available.

BSD Now episodes:

November 26, 201465: 8,000,000 Mogofoo-ops
Coming up on the show this week, we've got an interview with Brendan Gregg of Netflix. He's got a lot to say about performance tuning and benchmarks, and even some pretty funny stories about how people have done them incorrectly. As always, this week's news and answers to your emails, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
Even more BSD presentation videos
More videos from this year's MeetBSD and OpenZFS devsummit were uploaded since last week
Robert Ryan, At the Heart of the Digital Economy
FreeNAS & ZFS, The Indestructible Duo - Except for the Hard Drives
Richard Yao, libzfs_core and ioctl stabilization
OpenZFS, Company lightning talks
OpenZFS, Hackathon Presentation and Awards
Pavel Zakharov, Fast File Cloning
Rick Reed, Half a billion unsuspecting FreeBSD users
Alex Reece & Matt Ahrens, Device Removal
Chris Side, Channel Programs
David Maxwell, The Unix command pipeline
Be sure to check out the giant list of videos from last week's episode if you haven't seen them already
***
NetBSD on a Cobalt Qube 2
The Cobalt Qube was a very expensive networking appliance around 2000
In 2014, you can apparently get one of these MIPS-based machines for about forty bucks
This blog post details getting NetBSD installed and set up on the rare relic of our networking past
If you're an old-time fan of RISC or MIPS CPUs, this'll be a treat for you
Lots of great pictures of the hardware too
***
OpenBSD vs. AFL
In their never-ending security audit, some OpenBSD developers have been hitting various parts of the tree with a fuzzer
If you're not familiar, fuzzing is a semi-automated way to test programs for crashes and potential security problems
The program being subjected to torture gets all sorts of random and invalid input, in the hopes of uncovering overflows and other bugs
American Fuzzy Lop, in particular, has provided some interesting results across various open source projects recently
So far, it's fixed some NULL pointer dereferences in OpenSSH, various crashes in tcpdump and mandoc and a few other things
AFL has an impressive list of CVEs (vulnerabilities) that it's helped developers discover and fix
It also made its way into OpenBSD ports, FreeBSD ports and NetBSD's pkgsrc very recently, so you can try it out for yourself
***
GNOME 3 hits the FreeBSD ports tree
While you've been able to run GNOME 3 on PC-BSD and OpenBSD for a while, it hasn't actually hit the FreeBSD ports tree.. until now
Now you can play with GNOME 3 and all its goodies (as well as Cinnamon 2.2, which this also brings in) on vanilla FreeBSD
Be sure to check the commit message and /usr/ports/UPDATING if you're upgrading from GNOME 2
You might also want to go back and listen to our interview with Joe Marcus Clark about GNOME's portability
***
Interview - Brendan Gregg - [email protected] / @brendangregg
Performance tuning, benchmarks, debugging
News Roundup
DragonFlyBSD 4.0 released
A new major version of DragonFly, 4.0.1, was just recently announced
This version includes support for Haswell GPUs, lots of SMP improvements (including some in PF) and support for up to 256 CPUs
It's also the first release to drop support for i386, so it joins PCBSD in the 64 bit-only club
Check the release notes for all the details, including networking and kernel improvements, as well as some crypto changes
***
Can we talk about FreeBSD vs Linux
Hackernews had a recent thread about discussing Linux vs BSD, and the trolls stayed away for once
Rather than rehashing why one is "better" than the other, it was focused on explaining some of the differences between ecosystems and communities
If you're one of the many people who watch our show just out of curiosity about the BSD world, this might be a good thread to read
Someone in the comments even gave bsdnow.tv a mention as a good resource to learn, thanks guy
***
OpenBSD IPSEC tunnel guide
If you've ever wanted to connect two networks with OpenBSD gateways, this is the article for you
It shows how to set up an IPSEC tunnel between destinations, how to lock it down and how to access all the machines on the other network just like they were on your LAN
The article also explains some of the basics of IPSEC if you're not familiar with all the terminology, so this isn't just for experts
Though the article itself is a few years old, it mostly still applies to the latest stuff today
All the tools used are in the OpenBSD base system, so that's pretty handy too
***
DragonFly starts work on IPFW2
DragonFlyBSD, much like FreeBSD, comes with more than one firewall you can use
Now it looks like you're going to have yet another choice, as someone is working on a fork of IPFW (which is actually already in its second version, so it should be "IPFW3")
Not a whole lot is known yet; it's still in heavy development, but there's a brief roadmap page with some planned additions
The guy who's working on this has already agreed to come on the show for an interview, but we're going to give him a chance to get some more work done first
Expect that sometime next year, once he's made some progress
***
Feedback/Questions
Michael writes in
Samael writes in
Steven writes in
Remy writes in
Michael writes in
***
...more
1h 33min
November 19, 201464: Rump Kernels Revisited
This time on the show, we'll be talking with Justin Cormack about NetBSD rump kernels. We'll learn how to run them on other operating systems, what's planned for the future and a lot more. As always, answers to viewer-submitted questions and all the news for the week, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
EuroBSDCon 2014 talks and tutorials
The 2014 EuroBSDCon videos have been online for over a month, but unannounced - keep in mind these links may be temporary (but we'll mention their new location in a future show and fix the show notes if that's the case)
Arun Thomas, BSD ARM Kernel Internals
Ted Unangst, Developing Software in a Hostile Environment
Martin Pieuchot, Taming OpenBSD Network Stack Dragons
Henning Brauer, OpenBGPD turns 10 years
Claudio Jeker, vscsi and iscsid iSCSI initiator the OpenBSD way
Paul Irofti, Making OpenBSD Useful on the Octeon Network Gear
Baptiste Daroussin, Cross Building the FreeBSD ports tree
Boris Astardzhiev, Smartcom’s control plane software, a customized version of FreeBSD
Michał Dubiel, OpenStack and OpenContrail for FreeBSD platform
Martin Husemann & Joerg Sonnenberger, Tool-chaining the Hydra, the ongoing quest for modern toolchains in NetBSD
Taylor R Campbell, The entropic principle: /dev/u?random and NetBSD
Dag-Erling Smørgrav, Securing sensitive & restricted data
Peter Hansteen, Building The Network You Need With PF
Stefan Sperling, Subversion for FreeBSD developers
Peter Hansteen, Transition to OpenBSD 5.6
Ingo Schwarze, Let’s make manuals more useful
Francois Tigeot, Improving DragonFly’s performance with PostgreSQL
Justin Cormack, Running Applications on the NetBSD Rump Kernel
Pierre Pronchery, EdgeBSD, a year later
Peter Hessler, Using routing domains or tables in a production network
Sean Bruno, QEMU user mode on FreeBSD
Kristaps Dzonsons, Bugs Ex Ante
Yann Sionneau, Porting NetBSD to the LatticeMico32 open source CPU
Alexander Nasonov, JIT Code Generator for NetBSD
Masao Uebayashi, Porting Valgrind to NetBSD and OpenBSD
Marc Espie, parallel make, working with legacy code
Francois Tigeot, Porting the drm-kms graphic drivers to DragonFly
The following talks (from the Vitosha track room) are all currently missing:
Jordan Hubbard, FreeBSD, Looking forward to another 10 years (but we have another recording)
Theo de Raadt, Randomness, how arc4random has grown since 1998 (but we have another recording)
Kris Moore, Snapshots, Replication, and Boot-Environments
Kirk McKusick, An Introduction to the Implementation of ZFS
John-Mark Gurney, Optimizing GELI Performance
Emmanuel Dreyfus, FUSE and beyond, bridging filesystems
Lourival Vieira Neto, NPF scripting with Lua
Andy Tanenbaum, A Reimplementation of NetBSD Based on a Microkernel
Stefano Garzarella, Software segmentation offloading for FreeBSD
Ted Unangst, LibreSSL
Shawn Webb, Introducing ASLR In FreeBSD
Ed Maste, The LLDB Debugger in FreeBSD
Philip Guenther, Secure lazy binding
***
OpenBSD adopts SipHash
Even more DJB crypto somehow finds its way into OpenBSD's base system
This time it's SipHash, a family of pseudorandom functions that's resistant to hash bucket flooding attacks while still providing good performance
After an initial import and some clever early usage, a few developers agreed that it would be better to use it in a lot more places
It will now be used in the filesystem, and the plan is to utilize it to protect all kernel hash functions
Some other places that Bernstein's work can be found in OpenBSD include the ChaCha20-Poly1305 authenticated stream cipher and Curve25519 KEX used in SSH, ChaCha20 used in the RNG, and Ed25519 keys used in signify and SSH
***
FreeBSD 10.1-RELEASE
FreeBSD's release engineering team likes to troll us by uploading new versions just a few hours after we finish recording an episode
The first maintenance update for the 10.x branch is out, improving upon a lot of things found in 10.0-RELEASE
The vt driver was merged from -CURRENT and can now be enabled with a loader.conf switch (and can even be used on a PlayStation 3)
Bhyve has gotten quite a lot of fixes and improvements from its initial debut in 10.0, including boot support for ZFS
Lots of new ARM hardware is supported now, including SMP support for most of them
A new kernel selection menu was added to the loader, so you can switch between newer and older kernels at boot time
10.1 is the first to support UEFI booting on amd64, which also has serial console support now
Lots of third party software (OpenSSH, OpenSSL, Unbound..) and drivers have gotten updates to newer versions
It's a worthy update from 10.0, or a good time to try the 10.x branch if you were avoiding the first .0 release, so grab an ISO or upgrade today
Check the detailed release notes for more information on all the changes
Also take a look at some of the known problems to see if you'll be affected by any of them
PC-BSD was also updated accordingly with some of their own unique features and changes
***
arc4random - Randomization for All Occasions
Theo de Raadt gave an updated version of his EuroBSDCon presentation at Hackfest 2014 in Quebec
The presentation is mainly about OpenBSD's arc4random function, and outlines the overall poor state of randomization in the 90s and how it has evolved in OpenBSD over time
It begins with some interesting history on OpenBSD and how it became a security-focused OS - in 1996, their syslogd got broken into and "suddenly we became interested in security"
The talk also touches on how low-level changes can shake up the software ecosystem and third party packages that everyone uses
There's some funny history on the name of the function (being called arc4random despite not using RC4 anymore) and an overall status update on various platforms' usage of it
Very detailed and informative presentation, and the slides can be found here
A great quote from the beginning: "We consider ourselves a community of (probably rather strange) people who work on software specifically for the purpose of trying to make it better. We take a 'whole-systems' approach: trying to change everything in the ecosystem that's under our control, trying to see if we can make it better. We gain a lot of strength by being able to throw backwards compatibility out the window. So that means that we're able to do research and the minute that we decide that something isn't right, we'll design an alternative for it and push it in. And if it ends up breaking everybody's machines from the previous stage to the next stage, that's fine because we'll end up in a happier place."
***
Interview - Justin Cormack - [email protected] / @justincormack
NetBSD on Xen, rump kernels, various topics
News Roundup
The FreeBSD foundation's biggest donation
The FreeBSD foundation has a new blog post about the largest donation they've ever gotten
From the CEO of WhatsApp comes a whopping one million dollars in a single donation
It also has some comments from the donor about why they use BSD and why it's important to give back
Be sure to donate to the foundation of whatever BSD you use when you can - every little bit helps, especially for OpenBSD, NetBSD and DragonFly who don't have huge companies supporting them regularly like FreeBSD does
***
OpenZFS Dev Summit 2014 videos
Videos from the recent OpenZFS developer summit are being uploaded, with speakers from different represented platforms and companies
Matt Ahrens, opening keynote
Raphael Carvalho, Platform Overview: ZFS on OSv
Brian Behlendorf, Platform Overview: ZFS on Linux
Prakash Surya, Platform Overview: illumos
Xin Li, Platform Overview: FreeBSD
All platforms, Group Q&A Session
Dave Pacheco, Manta
Saso Kiselkov, Compression
George Wilson, Performance
Tim Feldman, Host-Aware SMR
Pavel Zakharov, Fast File Cloning
The audio is pretty poor on all of them unfortunately
***
BSDTalk 248
Our friend Will Backman is still busy getting BSD interviews as well
This time he sits down with Matthew Dillon, the lead developer of DragonFly BSD
We've never had Dillon on the show, so you'll definitely want to give this one a listen
They mainly discuss all the big changes coming in DragonFly's upcoming 4.0 release
***
MeetBSD 2014 videos
The presentations from this year's MeetBSD conference are starting to appear online as well
Kirk McKusick, A Narrative History of BSD
Jordan Hubbard, FreeBSD: The Next 10 Years
Brendan Gregg, Performance Analysis
The slides can be found here
***
Feedback/Questions
Dominik writes in
Steven writes in
Florian writes in
Richard writes in
Kevin writes in
***
Mailing List Gold
Contributing without code
Compression isn't a CRIME
Securing web browsers
***
...more
1h 54min
November 12, 201463: A Man's man(1)
This time on the show, we've got an interview with Kristaps Džonsons, the creator of mandoc. He tells us how the project got started and what its current status is across the various BSDs. We also have a mini-tutorial on using PF to throttle bandwidth. This week's news, answers to your emails and even some cheesy mailing list gold, coming up on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
Updates to FreeBSD's random(4)
FreeBSD's random device, which presents itself as "/dev/random" to users, has gotten a fairly major overhaul in -CURRENT
The CSPRNG (cryptographically secure pseudo-random number generator) algorithm, Yarrow, now has a new alternative called Fortuna
Yarrow is still the default for now, but Fortuna can be used with a kernel option (and will likely be the new default in 11.0-RELEASE)
Pluggable modules can now be written to add more sources of entropy
These changes are expected to make it in 11.0-RELEASE, but there hasn't been any mention of MFCing them to 10 or 9
***
OpenBSD Tor relays and network diversity
We've talked about getting more BSD-based Tor nodes a few times in previous episodes
The "tor-relays" mailing list has had some recent discussion about increasing diversity in the Tor network, specifically by adding more OpenBSD nodes
With the security features and attention to detail, it makes for an excellent dedicated Tor box
More and more adversaries are attacking Tor nodes, so having something that can withstand that will help the greater network at large
A few users are even saying they'll convert their Linux nodes to OpenBSD to help out
Check the archive for the full conversation, and maybe run a node yourself on any of the BSDs
The Tor wiki page on OpenBSD is pretty out of date (nine years old!?) and uses the old pf syntax, maybe one of our listeners can modernize it
***
SSP now default for FreeBSD ports
SSP, or Stack Smashing Protection, is an additional layer of protection against buffer overflows that the compiler can give to the binaries it produces
It's now enabled by default in FreeBSD's ports tree, and the pkgng packages will have it as well - but only for amd64 (all supported releases) and i386 (10.0-RELEASE or newer)
This will only apply to regular ports and binary packages, not the quarterly branch that only receives security updates
If you were using the temporary "new Xorg" or SSP package repositories instead of the default ones, you need to switch back over
NetBSD made this the default on i386 and amd64 two years ago and OpenBSD made this the default on all architectures twelve years ago
Next time you rebuild your ports, things should be automatically hardened without any extra steps or configuration needed
***
Building an OpenBSD firewall and router
While we've discussed the software and configuration of an OpenBSD router, this Reddit thread focuses more on the hardware side
The OP lists some of his potential choices, but was originally looking for something a bit cheaper than a Soekris
Most agree that, if it's for a business especially, it's worth the extra money to go with something that's well known in the BSD community
They also list a few other popular alternatives: ALIX or the APU series from PC Engines, some Supermicro boards, etc.
Through the comments, we also find out that QuakeCon runs OpenBSD on their network
Hopefully most of our listeners are running some kind of BSD as their gateway - try it out if you haven't already
***
Interview - Kristaps Džonsons - [email protected]
Mandoc, historical man pages, various topics
Tutorial
Throttling bandwidth with PF
News Roundup
NetBSD at Kansai Open Forum 2014
Japanese NetBSD users invade yet another conference, demonstrating that they can and will install NetBSD on everything
From a Raspberry Pi to SHARP Netwalkers to various luna68k devices, they had it all
As always, you can find lots of pictures in the trip report
***
Getting to know your portmgr lurkers
The lovable "getting to know your portmgr" series makes its triumphant return
This time around, they interview Alex, one of the portmgr lurkers that joined just this month
"How would you describe yourself?" "Too lazy."
Another post includes a short interview with Emanuel, another new lurker
We discussed the portmgr lurkers initiative with Steve Wills a while back
***
NetBSD's ARM port gets SMP
The ARM port of NetBSD now has SMP support, allowing more than one CPU to be used
This blog post on the website has a list of supported boards: Banana Pi, Cubieboard 2, Cubietruck, Merrii Hummingbird A31, CUBOX-I and NITROGEN6X
NetBSD's release team is working on getting these changes into the 7 branch before 7.0 is released
There are also a few nice pictures in the article
***
A high performance mid-range NAS
This blog post is about FreeNAS and optimizing iSCSI performance
It talks about using mid-range hardware with FreeNAS and different tunables you can change to affect performance
There are some nice graphs and lots of detail if you're interested in tweaking some of your own settings
They conclude "there is no optimal configuration; rather, FreeNAS can be configured to suit a particular workload"
***
Feedback/Questions
Heto writes in
Brad writes in
Tyler writes in
Tim writes in
Brad writes in
***
Mailing List Gold
Suspicious contributions
La puissance du fromage
Nothing unusual here
***
...more
1h 38min
November 05, 2014 62: Gift from the Sun
We're away at MeetBSD this week, but we've still got a great show for you. We'll be joined by Pawel Dawidek, who's done quite a lot of things in FreeBSD over the years, including the initial ZFS port. We'll get to hear how that came about, what he's up to now and a whole lot more. We'll be back next week with a normal episode of BSD Now - the place to B.. SD.
This episode was brought to you by
Interview - Pawel Jakub Dawidek - [email protected]
Porting ZFS, GEOM, GELI, Capsicum, various topics
...more
35min
October 29, 201461: IPSECond Wind
This week on the show, we sat down with John-Mark Gurney to talk about modernizing FreeBSD's IPSEC stack. We'll learn what he's adding, what needed to be fixed and how we'll benefit from the changes. As always, answers to your emails and all of this week's news, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
BSD panel at Phoenix LUG
The Phoenix, Arizona Linux users group had a special panel so they could learn a bit more about BSD
It had one FreeBSD user and one OpenBSD user, and they answered questions from the organizer and the people in the audience
They covered a variety of topics, including filesystems, firewalls, different development models, licenses and philosophy
It was a good "real world" example of things potential switchers are curious to know about
They closed by concluding that more diversity is always better, and even if you've got a lot of Linux boxes, putting a few BSD ones in the mix is a good idea
***
Book of PF signed copy auction
Peter Hansteen (who we've had on the show) is auctioning off the first signed copy of the new Book of PF
All the profits from the sale will go to the OpenBSD Foundation
The updated edition of the book includes all the latest pf syntax changes, but also provides examples for FreeBSD and NetBSD's versions (which still use ALTQ, among other differences)
If you're interested in firewalls, security or even just advanced networking, this book is a great one to have on your shelf - and the money will also go to a good cause
Michael Lucas has challenged Peter to raise more for the foundation than his last book selling - let's see who wins
Pause the episode, go bid on it and then come back!
***
FreeBSD Foundation goes to EuroBSDCon
Some people from the FreeBSD Foundation went to EuroBSDCon this year, and come back with a nice trip report
They also sponsored four other developers to go
The foundation was there "to find out what people are working on, what kind of help they could use from the Foundation, feedback on what we can be doing to support the FreeBSD Project and community, and what features/functions people want supported in FreeBSD"
They also have a second report from Kamil Czekirda
A total of $2000 was raised at the conference
***
OpenBSD 5.6 released
Note: we're doing this story a couple days early - it's actually being released on November 1st (this Saturday), but we have next week off and didn't want to let this one slip through the cracks - it may be out by the time you're watching this
Continuing their always-on-time six month release cycle, the OpenBSD team has released version 5.6
It includes support for new hardware, lots of driver updates, network stack improvements (SMP, in particular) and new security features
5.6 is the first formal release with LibreSSL, their fork of OpenSSL, and lots of ports have been fixed to work with it
You can now hibernate your laptop when using a fully-encrypted filesystem (see our tutorial for that)
ALTQ, Kerberos, Lynx, Bluetooth, TCP Wrappers and Apache were all removed
This will serve as a "transitional" release for a lot of services: moving from Sendmail to OpenSMTPD, from nginx to httpd and from BIND to Unbound
Sendmail, nginx and BIND will be gone in the next release, so either migrate to the new stuff between now and then or switch to the ports versions
As always, 5.6 comes with its own song and artwork - the theme this time was obviously LibreSSL
Be sure to check the full changelog (it's huge) and pick up a CD or tshirt to support their efforts
If you don't already have the public key releases are signed with, getting a physical CD is a good "out of bounds" way to obtain it safely
Here are some cool images of the set
After you do your installation or upgrade, don't forget to head over to the errata page and apply any patches listed there
***
Interview - John-Mark Gurney - [email protected] / @encthenet
Updating FreeBSD's IPSEC stack
News Roundup
Clang in DragonFly BSD
As we all know, FreeBSD got rid of GCC in 10.0, and now uses Clang almost exclusively on i386/amd64
Some DragonFly developers are considering migrating over as well, and one of them is doing some work to make the OS more Clang-friendly
We'd love to see more BSDs switch to Clang/LLVM eventually, it's a lot more modern than the old GCC most are using
***
reallocarray(): integer overflow detection for free
One of the less obvious features in OpenBSD 5.6 is a new libc function: "reallocarray()"
It's a replacement function for realloc(3) that provides integer overflow detection at basically no extra cost
Theo and a few other developers have already started a mass audit of the entire source tree, replacing many instances with this new feature
OpenBSD's explicit_bzero was recently imported into FreeBSD, maybe someone could also port over this too
***
Switching from Linux blog
A listener of the show has started a new blog series, detailing his experiences in switching over to BSD from Linux
After over ten years of using Linux, he decided to give BSD a try after listening to our show (which is awesome)
So far, he's put up a few posts about his initial thoughts, some documentation he's going through and his experiments so far
It'll be an ongoing series, so we may check back in with him again later on
***
Owncloud in a FreeNAS jail
One of the most common emails we get is about running Owncloud in FreeNAS
Now, finally, someone made a video on how to do just that, and it's even jailed
A member of the FreeNAS community has uploaded a video on how to set it up, with lighttpd as the webserver backend
If you're looking for an easy way to back up and sync your files, this might be worth a watch
***
Feedback/Questions
Ernõ writes in
David writes in
Kamil writes in
Torsten writes in
Dominik writes in
***
Mailing List Gold
That's not our IP
Is this thing on?
***
...more
1h 15min
October 22, 201460: Don't Buy a Router
This week on the show we're joined by Olivier Cochard-Labbé, the creator of both FreeNAS and the BSD Router Project! We'll be discussing what the BSD Router Project is, what it's for and where it's going. All this week's headlines and answers to viewer-submitted questions, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
BSD Devroom CFP
This year's FOSDEM conference (Belgium, Jan 31st - Feb 1st) is having a dedicated BSD devroom
They've issued a call for papers on anything BSD-related, and we always love more presentations
If you're in the Belgium area or plan on going, submit a talk about something cool you're doing
There's also a mailing list and some more information in the original post
***
Bhyve SVM code merge
The bhyve_svm code has been in the "projects" tree of FreeBSD, but is now ready for -CURRENT
This changeset will finally allow bhyve to run on AMD CPUs, where it was previously limited to Intel only
All the supported operating systems and utilities should work on both now
One thing to note: bhyve doesn't support PCI passthrough on AMD just yet
There may still be some issues though
***
NetBSD at Open Source Conference Tokyo
The Japanese NetBSD users group held a booth at another recent open source conference
As always, they were running NetBSD on everything you can imagine
One of the users reports back to the mailing list on their experience, providing lots of pictures and links
Here's an interesting screenshot of NetBSD running various other BSDs in Xen
***
More BSD switchers every day
A decade-long Linux user is considering making the switch, and asks Reddit about the BSD community
Tired of the pointless bickering he sees in his current community, he asks if the same problems exist over here and what he should expect
So far, he's found that BSD people seem to act more level-headed about things, and are much more practical, whereas some FSF/GNU/GPL people make open source a religion
There's also another semi-related thread about another Linux user wanting to switch to BSD because of systemd and GNU people
There are some extremely well written and thought-out comments in the replies (in both threads), be sure to give them all a read
Maybe the OPs should've just watched this show
***
Interview - Olivier Cochard-Labbé - [email protected] / @ocochardlabbe
The BSD Router Project
News Roundup
FreeBSD -CURRENT on a T420
Thinkpads are quite popular with BSD developers and users
Most of the hardware seems to be supported across the BSDs (especially wifi)
This article walks through installing FreeBSD -CURRENT on a Thinkpad T420 with UEFI
If you've got a Thinkpad, or especially this specific one, have a look at some of the steps involved
***
FreeNAS on a Supermicro 5018A-MHN4
More and more people are migrating their NAS devices to BSD-based solutions
In this post, the author goes through setting up FreeNAS on some of his new hardware
His new rack-mounted FreeNAS machine has a low power Atom with eight cores and 64GB of RAM - quite a lot for its small form factor
The rest of the post details all of the hardware he chose and goes through the build process (with lots of cool pictures)
***
Hardening procfs and linprocfs
There was an exploit published recently for SFTP in OpenSSH, but it mostly just affected Linux
There exists a native procfs in FreeBSD, which was the target point of that exploit, but it's not used very often
The Linux emulation layer also supports its own linprocfs, which was affected as well
The HardenedBSD guys weigh in on how to best solve the problem, and now support an additional protection layer from writing to memory with procfs
If you want to learn more about ASLR and HardenedBSD, be sure to check out our interview with Shawn too
***
pfSense monitoring with bandwidthd
A lot of people run pfSense on their home network, and it's really useful to monitor the bandwidth usage
This article will walk you through setting up bandwidthd to do exactly that
bandwidthd monitors based on the IP address, rather than per-interface
It can also build some cool HTML graphs, and we love those pfSense graphs
Have a look at our bandwidth monitoring and testing tutorial for some more ideas
***
Feedback/Questions
Dave writes in
Chris writes in
Zeke writes in
Bostjan writes in
Patrick writes in
***
Mailing List Gold
More old bugs
The Right Font™ (see also)
***
...more
1h 9min
October 15, 201459: BSDって聞いたことある？
This week on the show we'll be talking with Hiroki Sato about the status of BSD in Japan. We also get to hear about how he got on the core team, and we just might find out why NetBSD is so popular over there! Answers to all your emails, the latest news, and even a brand new segment, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
BSD talks at XDC 2014
This year's Xorg conference featured a few BSD-related talks
Matthieu Herrb, Status of the OpenBSD graphics stack
Matthieu's talk details what's been done recently in Xenocara the OpenBSD kernel for graphics (slides here)
Jean-Sébastien Pédron, The status of the graphics stack on FreeBSD
His presentation gives a history of major changes and outlines the current overall status of graphics in FreeBSD (slides here)
Francois Tigeot, Porting DRM/KMS drivers to DragonFlyBSD
Francois' talk tells the story of how he ported some of the DRM and KMS kernel drivers to DragonFly (slides here)
***
FreeBSD Quarterly Status Report
The FreeBSD project has a report of their activities between July and September of this year
Lots of ARM work has been done, and a goal for 11.0 is tier one support for the platform
The release includes reports from the cluster admin team, release team, ports team, core team and much more, but we've already covered most of the items on the show
If you're interested in seeing what the FreeBSD community has been up to lately, check the full report - it's huge
***
Monitoring pfSense logs using ELK
If you're one of those people who loves the cool graphs and charts that pfSense can produce, this is the post for you
ELK (ElasticSearch, Logstash, Kibana) is a group of tools that let you collect, store, search and (most importantly) visualize logs
It works with lots of different things that output logs and can be sent to one central server for displaying
This post shows you how to set up pfSense to do remote logging to ELK and get some pretty awesome graphs
***
Some updates to IPFW
Even though PF gets a lot of attention, a lot of FreeBSD people still love IPFW
While mostly a dormant section of the source tree, some updates were recently committed to -CURRENT
The commit lists the user-visible changes, performance changes, ABI changes and internal changes
It should be merged back to -STABLE after a month or so of testing, and will probably end up in 10.2-RELEASE
Also check this blog post for some more information and fancy graphs
***
Interview - Hiroki Sato (佐藤広生) - [email protected] / @hiroki_sato
BSD in Japan, technology conferences, various topics
News Roundup
pfSense on Hyper-V
In case you didn't know, the latest pfSense snapshots support running on Hyper-V
Unfortunately, the current stable release is based on an old, unsupported FreeBSD 8.x base, so you have to use the snapshots for now
The author of the post tells about his experience running pfSense and gives lots of links to read if you're interested in doing the same
He also praises pfSense above other Linux-based solutions for its IPv6 support and high quality code
***
OpenBSD as a daily driver
A curious Reddit user posts to ask the community about using OpenBSD as an everyday desktop OS
The overall consensus is that it works great for that, stays out of your way and is quite reliable
Caveats would include there being no Adobe Flash support (though others consider this a blessing..) and it requiring a more hands-on approach to updating
If you're considering running OpenBSD as a "daily driver," check all the comments for more information and tips
***
Getting PF log statistics
The author of this post runs an OpenBSD box in front of all his VMs at his colocation, and details his experiences with firewall logs
He usually investigates any IPs of interest with whois, nslookup, etc. - but this gets repetitive quickly, so..
He sets out to find the best way to gather firewall log statistics
After coming across a perl script to do this, he edited it a bit and is now a happy, lazy admin once again
You can try out his updated PF script here
***
FlashRD 1.7 released
In case anyone's not familiar, flashrd is a tool to create OpenBSD images for embedded hardware devices, executing from a virtualized environment
This new version is based on (the currently unreleased) OpenBSD 5.6, and automatically adapts to the number of CPUs you have for building
It also includes fixes for 4k drives and lots of various other improvements
If you're interested in learning more, take a look at some of the slides and audio from the main developer on the website
***
Feedback/Questions
Antonio writes in
Don writes in
Andriy writes in
Richard writes in
Robert writes in
***
Mailing List Gold
Subtle trolling
Old bugs with old fixes
A pig reinstall
Strange DOS-like environment
***
...more
1h 21min
October 08, 201458: Behind the Masq
Coming up this week on the show, we'll be talking to Matt Ranney and George Kola about how they use FreeBSD at Voxer, and how to get more companies to switch over. After that, we'll show you how to filter website ads at the gateway level, using DNSMasq. All this week's news and answers to your emails, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
NetBSD's EuroBSDCon report
This year's EuroBSDCon had the record number of NetBSD developers attending
The NetBSD guys had a small devsummit as well, and this blog post details some of their activities
Pierre Pronchery also talked about EdgeBSD there (also see our interview if you haven't already)
Hopefully this trend continues, and NetBSD starts to have even more of a presence at the conferences
***
Upcoming features in OpenBSD 5.6
OpenBSD 5.6 is to be released in just under a month from now, and one of the developers wrote a blog post about some of the new features
The post is mostly a collection of various links, many of which we've discussed before
It'll be the first version with LibreSSL and many other cool things
We will, of course, have all the details on the day of release
There are some good comments on hacker news about 5.6 as well
***
FreeBSD ARMv8-based implementation
The FreeBSD foundation is sponsoring some work to port FreeBSD to the new ThunderX ARM CPU family
With the potential to have up to 48 cores, this type of CPU might make ARM-based servers a more appealing option
Cavium, the company involved with this deal, seems to have lots of BSD fans
This collaboration is expected to result in Tier 1 recognition of the ARMv8 architecture
***
Updating orphaned OpenBSD ports
We discussed OpenBSD porting over portscout from FreeBSD a while back
Their ports team is making full use of it now, and they're also looking for people to help update some unmaintained ports
A new subdomain, portroach.openbsd.org, will let you view all the ports information easily
If you're interested in learning to port software, or just want to help update a port you use, this is a good chance to get involved
***
Interview - Matt Ranney & George Kola - [email protected] & [email protected]
BSD at Voxer, companies switching from Linux, community interaction
Tutorial
Adblocking with DNSMasq & Pixelserv
News Roundup
GhostBSD 4.0 released
The 4.0 branch of GhostBSD has finally been released, based on FreeBSD 10
With it come all the big 10.0 changes: clang instead of gcc, pkgng by default, make replaced by bmake
Mate is now the default desktop, with different workstation styles to choose from
***
Reports from PF about banned IPs
If you run any kind of public-facing server, you've probably seen your logs fill up with unwanted traffic
This is especially true if you run SSH on port 22, which the author of this post seems to
A lot can be done with just PF and some brute force tables
He goes through some different options for blocking Chinese IPs and break-in attempts
It includes a useful script he wrote to get reports about the IPs being blocked via email
***
NetBSD 6.1.5 and 6.0.6 released
The 6.1 and 6.0 branches of NetBSD got some updates
They include a number of security and stability fixes - plenty of OpenSSL mentions
Various panics and other small bugs also got fixed
***
OpenSSH 6.7 released
After a long delay, OpenSSH 6.7 has finally been released
Major internal refactoring has been done to make part of OpenSSH usable as a library
SFTP transfers can now be resumed
Lots of bug fixes, a few more new features - check the release notes for all the details
This release disables some insecure ciphers by default, so keep that in mind if you connect with legacy clients that use Arcfour or CBC modes
***
Feedback/Questions
Andriy writes in
Karl writes in
Possnfiffer writes in
Brad writes in
Solomon writes in
***
...more
1h 16min
October 01, 201457: The Daemon's Apprentice
We're back from EuroBSDCon! This week we'll be talking with Steve Wills about mentoring new BSD developers. If you've ever considered becoming a developer or helping out, it's actually really easy to get involved. We've also got all the BSD news for the week and answers to your emails, on BSD Now - the place to B.. SD.
This episode was brought to you by
Headlines
NetBSD at Hiroshima Open Source Conference
NetBSD developers are hard at work, putting NetBSD on everything they can find
At a technology conference in Hiroshima, some developers brought their exotic machines to put on display
As usual, there are lots of pictures and a nice report from the conference
***
FreeBSD's Linux emulation overhaul
For a long time, FreeBSD's emulation layer has been based on an ancient Fedora 10 system
If you've ever needed to install Adobe Flash on BSD, you'll be stuck with all this extra junk
With some recent work, that's been replaced with a recent CentOS release
This opens up the door for newer versions of Skype to run on FreeBSD, and maybe even Steam someday
***
pfSense 2.2-BETA
Big changes are coming in pfSense land, with their upcoming 2.2 release
We talked to the developer a while back about future plans, and now they're finally out there
The 2.2 branch will be based on FreeBSD 10-STABLE (instead of 8.3) and include lots of performance fixes
It also includes some security updates, lots of package changes and updates and much more
You can check the full list of changes on their wiki
***
NetBSD on the Raspberry Pi
This article shows how you can install NetBSD on the ever-so-popular Raspberry Pi
As of right now, you'll need to use a -CURRENT snapshot to do it
It also shows how to grow the filesystem to fill up an SD card, some pkgsrc basics and how to get some initial things set up
Can anyone find something that you can't install NetBSD on?
***
Interview - Steve Wills - [email protected] / @swills
Mentoring new BSD developers
News Roundup
MidnightBSD 0.5 released
We don't hear a whole lot about MidnightBSD, but they've just released version 0.5
It's got a round of the latest FreeBSD security patches, driver updates and various small things
Maybe one of their developers could come on the show sometime and tell us more about the project
***
BSD Router Project 1.52 released
The newest update for the BSD Router Project is out
This version is based on a snapshot of 10-STABLE that's very close to 10.1-RELEASE
It's mostly a bugfix release, but includes some small changes and package updates
***
Configuring a DragonFly BSD desktop
We've done tutorials on how to set up a FreeBSD or OpenBSD desktop, but maybe you're more interested in DragonFly
In this post from Justin Sherrill, you'll learn some of the steps to do just that
He pulled out an old desktop machine, gave it a try and seems to be pleased with the results
It includes a few Xorg tips, and there are some comments about the possibility of making a GUI DragonFly installer
***
Building a mini-ITX pfSense box
Another week, another pfSense firewall build post
This time, the author is installing to a Jetway J7F2, a mini-ITX device with four LAN ports
He used to be a m0n0wall guy, but wanted to give the more modern pfSense a try
Lots of great pictures of the hardware, which we always love
***
Feedback/Questions
Damian writes in
Jan writes in
Dale writes in
Joe writes in
Bostjan writes in
***
...more
1h 31min
September 24, 201456: Beastly Infrastructure
This week we're on the other side of the Atlantic, attending EuroBSDCon. For now, we've got an awesome interview with Peter Wemm about the FreeBSD web cluster and infrastructure. It's an inside look that you probably won't hear about anywhere else! We'll also get to a couple of your emails today, and be back next week with all the usual goodies, on BSD Now - the place to B.. SD.
This episode was brought to you by
Interview - Peter Wemm - [email protected] / @karinjiri
The FreeBSD web cluster and infrastructure
Feedback/Questions
Todd writes in
Brandon writes in
***
...more
58min

FAQs about BSD Now:

How many episodes does BSD Now have?

The podcast currently has 634 episodes available.

More shows like BSD Now

Security Now (Audio) by TWiT

Security Now (Audio)

1,970 Listeners

Software Engineering Radio - the podcast for professional software developers by se-radio@computer.org

Software Engineering Radio - the podcast for professional software developers

272 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

284 Listeners

LINUX Unplugged by Jupiter Broadcasting

LINUX Unplugged

265 Listeners

Python Bytes by Michael Kennedy and Brian Okken

Python Bytes

215 Listeners

Late Night Linux by The Late Night Linux Family

Late Night Linux

154 Listeners

Home Assistant Podcast by HK Media

Home Assistant Podcast

65 Listeners

CoRecursive: Coding Stories by Adam Gordon Bell - Software Developer

CoRecursive: Coding Stories

189 Listeners

Kubernetes Podcast from Google by Abdel Sghiouar, Kaslin Fields

Kubernetes Podcast from Google

181 Listeners

Late Night Linux Family All Episodes by The Late Night Linux Family

Late Night Linux Family All Episodes

44 Listeners

Linux Dev Time by The Late Night Linux Family

Linux Dev Time

21 Listeners

Self-Hosted by Jupiter Broadcasting

Self-Hosted

135 Listeners

2.5 Admins by The Late Night Linux Family

2.5 Admins

92 Listeners

Linux After Dark by The Late Night Linux Family

Linux After Dark

29 Listeners

Oxide and Friends by Oxide Computer Company

Oxide and Friends

47 Listeners