Posts Tagged ‘BSD’

FreeBSD 10R

Friday, January 24th, 2014

I faied to mention that FreeBSD 10 was out since 31 January. Here’s the release notes. It includes many new changes, for example unbound, clang and pkg being the default resolver, compiler and package manager, respectively, or other more subtile goodies such as filename completion in sh(1). Yay! BIND, GCC and the old package manager are out. Reasons for this include BIND10 being rewritten in C++ and Python, new versions of GCC being distributed under the more restrictive GPLv3 and the old package manager being old.

Small screens

Wednesday, January 23rd, 2013

Openbox. The perfect window manager for netbook screens. No panels, no icons on the desktop, no useless eyecandy, no nothing that would get in the way. Just a simple root menu, keybindings and the dock – should you want to run anything in it. Of course one could also run one of several panels or a fullblown desktop environment. Here’s a guide.

Console scrollback

Friday, October 26th, 2012

Trying out Minix 3 in VirtualBox lead to a very unpleasant surprise: no console scrollback. What a complete waste of time to use an operating system that comes with a console that doesn’t scroll. This reminds me of NetBSD, where you have to recompile the kernel in order to get a scrolling console. Or use window, tmux or screen to achive such basic funtionality. Hello? We are not in 1970 anymore, at the beginning of the Unix epoch. In 2012 this is a bug, not a feature. Today,  you can run Unix on microcontrollers.

PHP bugs

Sunday, May 20th, 2012

I am sick and tired of upgrading PHP and friends – packages upon some extensions it builds depend on, which web developers are normally using, like libxml2, freetype or libpng (both of them required by gd). In 2012 alone I have received no less than three critical security advisories for PHP alone, two for libxml2, one for freetype and one for libpng. Most of them involve serious vulnerabilities leading to remote code execution. So far I had to upgrade PHP and friends no less than seven times this year! I am seriously considering running a FEMP environment in a FreeBSD jail. It would make the upgrade process even more of a hassle and complicate things but would at least the host system won’t get compromised that easily.

Find out why PHP sucks, sucks, sucks from the programmer’s point of view. I’m not a programmer and PHP has worked fine for me. And it still does. Just that it’s annoyingly full of ugly bugs.

FreeBSD 9.0R

Monday, January 16th, 2012

FreeBSD 9.0 has been released. A lot of  important new features were added, such as FFS softupdates journaling, ZFS v28, HAST framework, Capsicum kernel sandboxing, user-level DTrace, TCP/IP congestion control framework, NFSv4, High Performance SSH, LLVM compiler infrastructure and clang, Sony PS3 support for the powerpc branch, and this new installer called bsdinstall.

The release announcement is available here.

OpenBSD owned by the feds?

Friday, December 17th, 2010

Allegedly, the OpenBSD crypto stack has backdoors carefuly placed in by FBI-sponsored open source developers ten years ago. If it’s true, this is very troubling news indeed. We do hope it’s only FUD.

Update: This is most probably BS. Here’s why. Supposedly, Bin Laden’s men are also involved. Right.

PF drop list

Tuesday, June 2nd, 2009

It’s been a while since we haven’t had any BSD related posts.

I have recently modified this script to generate a PF ruleset from the Spamhaus DROP list in order to keep evil packets out of your network. The DROP list is a tiny subset of the SBL containing netblocks controlled entirely by spammers. The modified script you can get here. To use it, put it somewhere in your PATH and run it once a day via cron. The ruleset is loaded via an anchor. In order to load it at boot time, put the following lines in your pf.conf above the usual rules:

# anchor for Spamhaus DROP list
anchor droplist
load anchor droplist from "/etc/pf.drop"

Enjoy.