BSD Magazine (Mar 2012): Nessus, Exploitation Tools and Payloads

March’s issue of the BSD Magazine is now available: Nessus, Exploitation Tools and Payloads (free PDF download).

You’ll find the following subjects inside:

  • MaheshaBSD-2.0: What’s New On The Lake Manasarovar?
  • GhostBSD: A Brief Overview
  • How Do I Study for the BSDA Certification?
  • GDB and Truss for Debugging
  • PostgreSQL: MVCC and Vacuum
  • Beowulf Clusters with DragonflyBSD
  • Npppd: EasyPPTP VPN with OpenBSD
  • Anatomy of FreeBSD Compromise Part 4

Read and download Nessus, Exploitation Tools and Payloads (BSD Mag 12/03)

BSD Magazine (Feb 2012): BSD Certification: How? When? Why?

February’s issue of the BSD Magazine is now available: BSD Certification: How? When? Why? (free PDF download).

About 2 years ago the future of BSD Mag was uncertain, but we’re hoping we’re going to see another 12 issues this year. Well done to the editors and contributors!

Inside that latest issue you’ll find the following subjects:

  • Why Should I Become BSDA Certified?
  • Customizing Your PC-BSD 9.0 Desktop
  • The MidnightBSD Package Management Tools
  • What Can’t You Do On The command-line?
  • PostgreSQL: From Installation to PITR
  • OpenBSD with SUN JAVA & Netbeans
  • Load Balancers. Enterprise Load & Service Availability
  • Anatomy of FreeBSD Compromise Part 3
  • Data Classification Policy
  • Counting Our Losses

Read and download the magazine here: BSD Certification: How? When? Why


BSD Magazine – January 2012 issue is out

January’s issue of the BSD Magazine is now available: FreeBSD: Get Up-To-Date (free PDF download). You’ll find the following subjects:

  • What’s New in FreeBSD 9.0 by Dru Lavigne
  • Puppet on FreeBSD
  • FreeBSD IPS With Snort Inline
  • malloc(9): The Kernel’s General Purpose Memory Allocator
  • Keeping FreeBSD’s Base System and Packages Up-To-Date
  • Anatomy of a FreeBSD Compromise (Part 2)
  • Home Brew Captive Portal With OpenBSD

Read or download this issue from:


Rolling Your Own Kernel (BSD Magazine 2011-12)

December’s issue of the BSD Magazine is available: Rolling Your Own Kernel.

  • Free Issue to Download! BSD 12/2011
  • Google Code-In and FreeBSD’s Participation
  • Installing PC-BSD on a Mac
  • Keeping Your Configuration Files Shiny as New Using sysmerge(8)
  • Rolling Your Own FreeBSD Kernel
  • OpenBSD 5.0: PHP, Cacti, and Symon
  • Extracting Useful Information From Log Messages
  • Anatomy of a FreeBSD Compromise (Part 1)
  • Hardening BSD with Security Levels
  • FreeBSD Foundation Update

The Inevitability of IPv6 (BSD Magazine 2011-10)

A new issue (October 2011) of the free BSD Magazine is now available: The Inevitability of IPv6 (pdf).

From the table of contents:

Configuring a FreeBSD Stealth Logging Server
The collection of log files provides security administrators with the ability to have an audit trail for the behavior of an information system. In the event that a system is compromised, remote logging provides a forensic trail to determine what occurred on the system.

DragonflyBSD News: Recovering Data With Hammer
It’s been a while since we had a straightforward news report for DragonFly; the time since then has been filled with reports on Hammer and bulk pkgsrc builds.

Using Openmaps Data With Geoserver
In this article in our GIS series, we will examine how to import Openmaps data. Open Street Map ( founded in July 2004 by Steve Coast, is a treasure trove of worldwide street maps available under the Creative Commons licence.

ONMP on OpenBSD 4.9
ONMP on OpenBSD 4.9OpenBSD is my BSD of choice. In fact, it is my OS of choice wherever possible. I always challenge those who disagree with me to name another OS with a similar track record for security.

OSSEC on OpenBSD (ONMP) 4.9
It is worth saying up front that these instructions assume that you’re running Nginx compiled from source vice Apache or Nginx from Ports or Packages.

Taking a Peek Under the Hood Without Compromising Security – LibGTop and OpenBSD
LibGTop allows developers to peek under the hood of the kernel and export lots of system data in a convenient and easy to use library.

Protecting Apache From Dos And Ddos Attacks
DOS or DDOS, it is an attack where multiple compromised systems (which are usually infected with a Trojan) are used to target a single system in attempt to make the system resources(cpu,memory,network) unavailable to its intended users and causing system to crash.

The Inevitability of IPv6, Part 1 & 2
Part 1: A switch from IPv4 to IPv6 is on your horizon. Are you ready for it?
Part 2: Configure IPv6 in your network – even if your routing infrastructure doesn’t yet support it.

BSD Mag (Oct 2011) – The Inevitability of IPv6

Protecting dynamic websites in FreeBSD (BSD Magazine 2011-09)

A new, free to download, issue of the BSD Magazine (September 201) is now available: Protecting dynamic websites in FreeBSD (pdf).

From the table of contents:

  • DNSSEC resolution and IPv6 Unbound on FreeBSD 8.2
  • Keeping up to date in PC-BSD 9
  • Using Life Preserver to Backup a PC-BSD 9.0 System to FreeNAS™ 8.0.1
  • Recovering data with hammer
  • Apache2, php5, mysql5, modsecurity2.5 installation and confguration in order to protect dynamic websites from various attacks, in Freebsd 8.2
  • MySQL Unleashed!
  • Terminal Descriptions for OpenBSD AMD/Intel consoles
  • (Ab)using VideoLAN: Learn what you can do with your video and audio using powerful VideoLAN command line interface
  • NetBSD Intrusion Detection Server. How can we describe the functions of such a server?


Quick news: BSD Magazine, FreeBSD 9 IPv6 only, fwbuilder, Ruby



  • Fwbuilder 5 (Firewall Builder) released, supporting import of pf configurations. Firewall Builder can now import PF configurations in pf.conf format. To import a pf.conf configuration go to File -> Import Firewall and follow the prompts.


  • Older versions of the Ruby programming language were released under GPLv2 and “Ruby’s” license.  Ruby 1.9.3  is released under 2-clause BSDL and “Ruby’s” license.

BSD Security (BSD Magazine 2011-06)

A new issue of the free BSD Magazine is available: BSD Security (pdf).

From the table of contents:

Larger scale FreeBSD

I’ve often joked that it’s quite easy to manage one FreeBSD machine or one thousand, but if you have ten machines it can be quite a bit of work.

DragonflyBSD news: Testing Hammer Deduplication on Real-world Data

If you’ve been in the market for storage devices lately, you may have noticed a trend. Prices for various storage devices are generally determined by size, then speed, and then the whole price is increased by the features that come with that disk appliance.

PC-BSD’s New Control Panel

This article introduces the new Control Panel that will ship with PC-BSD 9.0. Readers are encouraged to try out the Control Panel prior to release by downloading a PC-BSD 9.0 testing snapshot or building the Control Panel on a PC-BSD 8.x system or a FreeBSD 8.x system that has Xorg configured.

Using POSTGIS tabular and geographic data with FreeBSD

In this article, we will look at extending our GIS server to use PostGIS.

Collectd – A look at the Systems Statistics Collection Daemon

Systems Administrators need a variety of tools to properly monitor and tune their systems to the various loads…

Using Memcached for High Scalability Web Services

Been creating web services/ applications for 6 years and until recently decided to try out memory caching technology instead of hitting up the ole SQL server for the same records over and over again.

LDAP Authentication and Authorization of Unix Users Under OpenBSD

Unlike most Unix-like operating systems, OpenBSD does not come with PAM nor nsswitch which made it tedious to authenticate local users against a remote database like LDAP. That was until ypldap(8) came along.

Building a complete intrusion detection system with Snorby on BSD

FreeBSD and OpenBSD are a popular choice for installing the open-source Snort intrusion detection. Documents have been written in the past for popular analysis tools such as BASE and Sguil, however nothing extensive has been created for Snorby.

Full Disk Encryption on FreeBSD

On systems (for instance laptop computers) that may be physicaly accessed or stolen by untrusted persons, encrypting sensitive pieces of data should be mandatory.

What It Takes: Starting and Running an Open Source Certification Program, Part II

Last month, in the first article in this series, we discussed the People aspect of running an Open Source certification program such as the BSD Certification Group (BSDCG). We discussed the types of people you’ll need in your program- SMEs, Writers, Translators, Technical Experts, Managers, the Advisory Group, and your Psychometrician.

Interview with Paul Shekenveld

Paul has participated in all nine EuroBSDcon editions so far and visited BSDcan and AsiaBSDcon several times. Today he is a member of EuroBSDcon 2011 comitee. In this months issue he will answer a few of our questions about the upcoming European BSD conference.

NanoBSD and ALIX (BSD Magazine 2011-06)

A new month, a new BSD Magazine issue. The latest issue is titled NanoBSD and ALIX (pdf).

From the table of contents:

Introduction to OpenSSL: Command-line Tool

The article describes the command-line utility of openssl. It is a tool that supports encryption and decryption, message digests, key generation and exchange and ssl channel manipulations.

Introducing FreeNASTM 8.0

On May 2, 2011 the much anticipated redesign of FreeNAS was released. This article introduces FreeNAS 8.0, describing the reasons for its redesign, the current and upcoming features, the graphical administrative interface, and where you can find additional information.

A Puffy In The Corporate Aquarium – Success story: OpenBSD as an Enterprise Desktop

While OpenBSD 2 is well known for its use in infrastructure services (MTA, DNS, firewall…) or appliances, this article will focus on a less known application: the use of OpenBSD as a Joe User Desktop.

Installing FreeBSD with PC-SYSINSTALL

Several months ago, the PC-SYSINSTALL system (The installer for PC-BSD 8.0 and higher) was merged into FreeBSD CURRENT, in preparation for FreeBSD 9.0.

An introduction to GIS on FreeBSD

Geographic information systems (GIS) are rapidly gaining popularity both commercially and on the Internet, and used with location aware devices such as mobile phones can be a powerful tool for aiding productivity.

Exploring The Powers Of The Cloud – Deploying Eyeos On BSD

Ever thought of running things in the cloud? How about doing that from your own server, without any extra effort or cost? We take a look at eyeOS, a cloud OS, and as usual, we do so on BSD.

NanoBSD and ALIX

In the previous issue of BSD Magazine, Bill Harris described how to do a basic installation of FreeBSD on a PC-Engines ALIX board with a Compact Flash card. This is a great way to get started, but there are some risks to this approach.

Mutt On OS X – Part III

When we last left our heroes (in April, 2011 issue of BSD Magazine), I had briefly discussed searching our Mac’s address book as well as begin the process of setting up a complex, multi-account Mutt setup. In this article, I’ll go a bit deeper into setting up Mutt to make the most of Gmail’s features, as well as a way to handle attachments on your Mac.

OpenBSD Networking

OpenBSD has an often mistaken image across the world that it stands for cryptography and crypto alone. Only for security applications OpenBSD is a good choice. This is what I used to think till I started looking at its IPsec stack in 2003.

OMAP3 Full Support is Coming Soon in FreeBSD

The trend in the FreeBSD development is bringing FreeBSD for new sets of hardware. The OMAP™ 3 family of multimedia applications processors from TI introduces a new level of performance that enables laptop-like productivity and advanced entertainment in multimedia-enabled mobile devices.

What It Takes – Starting and Running an Open Source Certification Program, Part I

So you’re all excited about your new software and its amazing capabilities to change the world. You truly believe that if only more people knew about it and were competent at using it, the world (or at least the information technology world) would be revolutionized.

Interview with Rafa? Jaworowski

Rafal Jaworowski is a co-founder of Semihalf, where he is leading the operating systems department. With over 12 years of experience in the embedded systems field he has ported FreeBSD to various ARM and PowerPC systems, designed and developed device drivers and kernel infrastructure components, which are embedded in commercial products and installations. He contributes to the FreeBSD Project as a src committer. He has earned a M.Sc. degree in Mathematics.