BSD Magazine (Oct 2012): Network Security & Auditing

October’s issue of the BSD Magazine is now available: Network Security & Auditing (free PDF download).

You’ll find the following subjects inside:

  • VX ConnectBot: Open Source SSH Client for Android Devices
  • Installing Xfce Desktop Environment on OpenBSD 5.1
  • Browse the Internet Differently
  • FreeBSD Enterprise Search with Apache Solr (Part 2)
  • PostgreSQL: Indexes
  • Unix IPC with FIFOs
  • Capture Session Data with Argus on FreeBSD
  • Securing your Family with pfSense and IPSec
  • Installation and Setup of the Halon Virtual Security Router

Thanks Charles (he wrote the article on Xombrero) for reminding me to post this.

BSD Mag (Sep 2012): What’s new in PC-BSD 9.1

September’s issue of the BSD Magazine is now available: What’s new in PC-BSD 9.1 (free PDF download).

We are now living in an age of cloud computing and sharing content and news, privately and publicly. However, it seems cloud companies struggle to keep our data private and don’t seem to always respect users’ privacy, so why not set up your own cloud?

If you want to stay in control of your own data and share it only with those you want to share it with, have a look at ownCloud. Kris Moore from the PC-BSD Project has an article showing how to set up ownCloud on PC-BSD. Very useful.

You’ll find the following subjects inside the latest issue of BSD Mag:

What’s New in PC-BSD 9.1

PC-BSD 9.1 adds many new features, ranging from more graphical utilities available within Control Panel, a redesigned installer, a server installation wizard, and improved jail management. This article introduces these new features. PC-BSD 9.1 is expected to be released during September, 2012. This article introduces some of the new features of this release.

Setting up Your OwnCloud Instance via the Warden™

In this article we will be taking a look at the OwnCloud software, specifically how to do the initial installation and configuration inside a jail run by PC-BSD’s® jail management utility, the Warden™. First we will take a look at a setup done from a PC-BSD graphical interface, and then explore the same setup from the command-line using TrueOS™, the server version of PC-BSD.

Nmap: The Network Swiss Army Knife

Nmap (“Network Mapper”) is a GPL utility for network discovery and security auditing. Many systems and network administrators find it very useful for network inventory, monitoring hosts and services uptime, debugging network related problems, and many other tasks. From this article you will learn the basic functionalities of Nmap 6.

Unix IPC with Pipes

This article explains one of the earliest forms of inter-process communication (IPC) in Unix. Pipes were the original form of Unix IPC and were present in Third Edition of Unix (1973). They can only be used to communicate between related processes, but despite this limitation they still remain one of the most frequently employed mechanisms for IPC.

FreeBSD Enterprise Search with Apache Solr

Back office integration and cross platform search has always posed major challenges especially in large organizations with many legacy systems. With Apache Solr these barriers can be overcome and the power of enterprise search realised. In this new series the author will show you step by step how to commission an Apache Solr search engine.

Hardening FreeBSD with TrustedBSD and Mandatory Access Controls (MAC)

Most system administrators understand the need to lock down permissions for files and applications. In addition to these configuration options on FreeBSD, there are features provided by TrustedBSD that add additional layers of specific security controls to fine tune the operating system for multilevel security. By reading this article you will learn the configuration of the mac_bsdextended module and how to use the ugidfw utility

Interview with Jeroen van Nieuwenhuizen

Jeroen van Nieuwenhuizen was the chair of the EuroBSDcon 2011 organizing committee. Currently, he is one of the members of the EuroBSDcon Foundation board. He came in contact with Unix in 1997 and started to work with the BSDs in 2002. In his daily life Jeroen works as a Unix Consultant for Snow B.V. BSD Magazine asked him some questions regarding event organization and opportunities to participate in organizing EuroBSDcon.

BSD Magazine has also a “Best of 2011? issue available for purchase.

August BSD Mag: Tuning ZFS on FreeBSD and Set up a VPN Server

The August issue of BSD Magazine is out: Tuning ZFS on FreeBSD.

From the table of contents:

Tuning ZFS on FreeBSD
By Martin Matuska

ZFS is a modern 128-bit file system based on the copy-on-write model. It originates from the OpenSolaris project and has first appeared in FreeBSD in 2008. ZFS has many innovative features including an integrated volume manager with mirroring and RAID capabilities, data checksumming and compression, writable snapshots that can be transferred between systems and many more. In this article the author is going to discuss several tuning options including sysctl(2) knobs and give examples how can ZFS performance and efficiency can be measured and evaluated. This article is intended for FreeBSD users with ZFS version 28 available since 8.3-RELEASE and 9.0-RELEASE.

MPD5 – VPN Server with FreeBSD Setup and Management
By Antonion Francesco Gentile

Mpd5 is a fast, flexible and secure way to make VPN connections on FreeBSD. It requires very few resources and supports a wide range of protocols, a great tool for network managers. By reading this article you will learn to setup and manage a VPN server PPTP based.

PostgreSQL Partitioning
By Luca Ferrari

In the previous articles the main features of PostgreSQL, including server-side programming were shown. In this article a simple application scenario will be used to demonstrate the capability of partitioning huge amounts of data into different tables in different spaces transparently.

Securing DNS Transactions
By Paul Ammann

In the June 2012 issue, we outlined the threats, security objectives, and protection approaches for various DNS transactions. This article provides the steps involved in implementing those approaches, as well as operational best practices that go with those implementations.

MaheshaBSD Server Edition Has Been Just Released!
By Juraj Sipos

Many newcomers to FreeBSD find it difficult to setup their own FTP/WWW server quickly and, on the other hand, experienced users sometimes need to take precautions for unexpected crash situations – that is, to have a strategy for time economization and portability, as these two are valuable assets in our rushing world. From this article you will find out ow to run a simple and smart FTP/WWW server.

BSD Magazine (Mar 2012): Nessus, Exploitation Tools and Payloads

March’s issue of the BSD Magazine is now available: Nessus, Exploitation Tools and Payloads (free PDF download).

You’ll find the following subjects inside:

  • MaheshaBSD-2.0: What’s New On The Lake Manasarovar?
  • GhostBSD: A Brief Overview
  • How Do I Study for the BSDA Certification?
  • GDB and Truss for Debugging
  • PostgreSQL: MVCC and Vacuum
  • Beowulf Clusters with DragonflyBSD
  • Npppd: EasyPPTP VPN with OpenBSD
  • Anatomy of FreeBSD Compromise Part 4

Read and download Nessus, Exploitation Tools and Payloads (BSD Mag 12/03)

BSD Magazine (Feb 2012): BSD Certification: How? When? Why?

February’s issue of the BSD Magazine is now available: BSD Certification: How? When? Why? (free PDF download).

About 2 years ago the future of BSD Mag was uncertain, but we’re hoping we’re going to see another 12 issues this year. Well done to the editors and contributors!

Inside that latest issue you’ll find the following subjects:

  • Why Should I Become BSDA Certified?
  • Customizing Your PC-BSD 9.0 Desktop
  • The MidnightBSD Package Management Tools
  • What Can’t You Do On The command-line?
  • PostgreSQL: From Installation to PITR
  • OpenBSD with SUN JAVA & Netbeans
  • Load Balancers. Enterprise Load & Service Availability
  • Anatomy of FreeBSD Compromise Part 3
  • Data Classification Policy
  • Counting Our Losses

Read and download the magazine here: BSD Certification: How? When? Why

 

BSD Magazine – January 2012 issue is out

January’s issue of the BSD Magazine is now available: FreeBSD: Get Up-To-Date (free PDF download). You’ll find the following subjects:

  • What’s New in FreeBSD 9.0 by Dru Lavigne
  • Puppet on FreeBSD
  • FreeBSD IPS With Snort Inline
  • malloc(9): The Kernel’s General Purpose Memory Allocator
  • Keeping FreeBSD’s Base System and Packages Up-To-Date
  • Anatomy of a FreeBSD Compromise (Part 2)
  • Home Brew Captive Portal With OpenBSD

Read or download this issue from: http://bsdmag.org/magazine/1784-freebsd-get-up-to-date.

 

Rolling Your Own Kernel (BSD Magazine 2011-12)

December’s issue of the BSD Magazine is available: Rolling Your Own Kernel.

  • Free Issue to Download! BSD 12/2011
  • Google Code-In and FreeBSD’s Participation
  • Installing PC-BSD on a Mac
  • Keeping Your Configuration Files Shiny as New Using sysmerge(8)
  • Rolling Your Own FreeBSD Kernel
  • OpenBSD 5.0: PHP, Cacti, and Symon
  • Extracting Useful Information From Log Messages
  • Anatomy of a FreeBSD Compromise (Part 1)
  • Hardening BSD with Security Levels
  • FreeBSD Foundation Update

The Inevitability of IPv6 (BSD Magazine 2011-10)

A new issue (October 2011) of the free BSD Magazine is now available: The Inevitability of IPv6 (pdf).

From the table of contents:

Configuring a FreeBSD Stealth Logging Server
The collection of log files provides security administrators with the ability to have an audit trail for the behavior of an information system. In the event that a system is compromised, remote logging provides a forensic trail to determine what occurred on the system.

DragonflyBSD News: Recovering Data With Hammer
It’s been a while since we had a straightforward news report for DragonFly; the time since then has been filled with reports on Hammer and bulk pkgsrc builds.

Using Openmaps Data With Geoserver
In this article in our GIS series, we will examine how to import Openmaps data. Open Street Map (openstreetmap.org) founded in July 2004 by Steve Coast, is a treasure trove of worldwide street maps available under the Creative Commons licence.

ONMP on OpenBSD 4.9
ONMP on OpenBSD 4.9OpenBSD is my BSD of choice. In fact, it is my OS of choice wherever possible. I always challenge those who disagree with me to name another OS with a similar track record for security.

OSSEC on OpenBSD (ONMP) 4.9
It is worth saying up front that these instructions assume that you’re running Nginx compiled from source vice Apache or Nginx from Ports or Packages.

Taking a Peek Under the Hood Without Compromising Security – LibGTop and OpenBSD
LibGTop allows developers to peek under the hood of the kernel and export lots of system data in a convenient and easy to use library.

Protecting Apache From Dos And Ddos Attacks
DOS or DDOS, it is an attack where multiple compromised systems (which are usually infected with a Trojan) are used to target a single system in attempt to make the system resources(cpu,memory,network) unavailable to its intended users and causing system to crash.

The Inevitability of IPv6, Part 1 & 2
Part 1: A switch from IPv4 to IPv6 is on your horizon. Are you ready for it?
Part 2: Configure IPv6 in your network – even if your routing infrastructure doesn’t yet support it.

BSD Mag (Oct 2011) – The Inevitability of IPv6