Researchers at Core Security Technologies issued an advisory on vulnerabilities affecting FreeBSD

Core Security Technologies, a network security company that specializes in attack intelligence and vulnerability management, has recently discovered several vulnerabilities in FreeBSD.

Researchers at Core Security Technologies issued an advisory today on three vulnerabilities in affecting the FreeBSD operating system.

FreeBSD is a Unix-like operating system used to power servers, desktops and embedded platforms. According to the advisory from Core Security, several vulnerabilities were spotted in the FreeBSD kernel code that implements the vt console driver previously known as Newcons as well as the code the implements Stream Control Transmission Protocol [SCTP] sockets. These issues could enable a local, unprivileged attacker to crash the system, disclose kernel memory containing sensitive information and execute arbitrary code with super user privileges.

The FreeBSD Project issued fixes for the issues that are available to users who upgrade to FreeBSD 10.1-RELENG or one of the following reasons: stable/10, 10.1-STABLE releng/10.1, 10.1-RELEASE-p5 releng/10.0, 10.0-RELEASE-p17 stable/9, 9.3-STABLE releng/9.3, 9.3-RELEASE-p9 stable/8, 8.4-STABLE releng/8.4 and 8.4-RELEASE-p23.

Original announcement: http://www.securityweek.com/freebsd-patches-kernel-security-vulnerabilities

FreeBSD Foundation January 2015 Update

FreeBSD foundation logoThis month’s update from the FreeBSD Foundation includes development updates, conference updates, stories from developers, as well as 2015′s fundraising goal.

 

Dear FreeBSD Community Member,

January is that exciting time of year where everything feels new again. It radiates with opportunities and allows us to embark on plans to make this year the best one yet. Here at the Foundation, we are using that energy to get a running start in a number of areas. Our Project Updates continue to show great progress in key areas such as arm64. We’ve kicked off our 2015 fundraising campaign(our most ambitious to date) and we’re launching a new series of articles. Plus, our conference calendar is quickly filing up and includes more new events.  2015 is shaping up to be an awesome year for the Foundation and FreeBSD Community. We can’t wait to show you what’s in store.  Until then, take a minute and check out all that’s happened since our last update.
Happy New Year!
Deb

Read the full announcement here: https://www.freebsdfoundation.org/press/2015janupdate.pdf

Ice 3.6b: Build Ice, IcePy and IcePHP on FreeBSD

iceUser grembo wrote this short tutorial on how to set up Ice on FreeBSD.

The attached patch allows building Ice 3.6b on FreeBSD.

To install Ice, IcePy and IcePHP do:

Code:
cd /usr/ports
patch -p1 <ice36b-freebsd-port.patch.txt

# install Ice for C++
cd /usr/ports/devel/ice-beta
make install clean

# install Ice for Python
cd /usr/ports/devel/py-ice-beta
make install clean

# install Ice for PHP
cd /usr/ports/devel/php5-ice-beta
make install clean

(includes https://www.zeroc.com/forums/patches…rformance.html).

Original post: https://www.zeroc.com/forums/patches/6380-ice-3-6b-build-ice-icepy-icephp-freebsd.html

The difference between /sbin, /bin, /usr/sbin, and /user/bin

/u/evidentlycat gives a great explanation of the difference between /sbin, /bin, /usr/sbin, and /usr/bin on /r/BSD.

http://b.thumbs.redditmedia.com/ogsjP2Dly5R9Y796Qg92fW4pI9kRJY-DIiBAISX4ebk.png

I use the terms “dynamically linked” and “statically linked”. A statically linked executable is independent: it does not load a separate C library, instead, the executable itself contains copies of code it uses from the C library, and interfaces with the kernel entirely by itself through syscalls. A dynamically linked executable loads an external library from a file and calls functions in it.

bin is for binaries which are useful for users without elevated privileges. /bin contains statically-linked binaries which are “fundamental to both single and multi-user environments” according to hier(7). They may be used in the tiny installer ramdisk. Most things in /usr/bin are dynamically linked and all of them are inaccessible in the installer.

sbin is for superuser binaries and daemons, i.e. things not useful to users without elevated privileges. Everything in /sbin is statically linked and accessible in the installer. Most things in /usr/sbin are dynamically linked and all of them are inaccessible in the installer….

Original post from /u/evidentlycat: http://www.reddit.com/r/BSD/comments/2szofc/eli5_why_is_separating_binaries_into_bin_sbin/cnudxzs

Official documentation on filesystem layout: https://www.freebsd.org/cgi/man.cgi?hier%287%29

FreeBSD last quarter status report 2014

freebsd-logo-largeThe long awaited FreeBSD final quarter status report of 2014 is here. Numerous accomplishments have been made, head on over to the link below to see the year in review.

This report covers FreeBSD-related projects between October and December 2014. This is the last of four reports planned for 2014.

The fourth quarter of 2014 included a number of significant improvements to the FreeBSD system. In particular, compatibility with other systems was enhanced. This included significant improvements to the Linux compatibility layer, used to run Linux binaries on FreeBSD, and the port of WINE, used to run Windows applications. Hypervisor support improved, with FreeBSD gaining the ability to run as domain 0 on Xen’s new high-performance PVH mode, bhyve gaining AMD support, and new tools for creating FreeBSD VM images arriving.

This quarter was also an active time for the toolchain, with numerous improvements to the compiler, debugger, and other components, including initial support for C++14, which should be complete by FreeBSD 10.2.

Thanks to all the reporters for the excellent work!

Full status report: https://www.freebsd.org/news/status/report-2014-10-2014-12.html

 

MediaFire Launches Linux/Open Source-Friendly Cloud Storage

MediaFire has released an open source toolkit which supports Linux and FreeBSD.

http://cdn2.gamefront.com/wp-content/uploads/2012/01/mediafire.png

Another cloud storage vendor is eyeing the open source community. This week, MediaFire announced a new open source toolkit compatible with Linux and FreeBSD, giving Linux desktop fans another cloud storage option to compete with Dropbox, Google Drive and the like.

MediaFire’s open source developer toolkit, which it announced Jan. 21, provides several tools, among them a FUSE interface for POSIX-compatible operating system. In non-programmer terms, the FUSE tool makes it possible to connect applications running on Linux, FreeBSD and most other Unix-like operating systems to MediaFire’s cloud storage platform, and to access and sync MediaFire files through interfaces such as the Nautilus file manager….

Full article: http://thevarguy.com/open-source-application-software-companies/012215/medi…

How To Install and Manage Ports on FreeBSD 10.1

This tutorial by user Casey of iTech Tips shows us how to get started with installing and managing ports on FreeBSD 10.1.

FreeBSD is a powerful operating system capable of functioning in a variety of roles. Part of what makes this operating system an ideal choice in many scenarios is its reputation for flexibility. A large contribution to this reputation comes from FreeBSD’s supported method for installing software from source, known as the ports system.

In this guide, we will discuss some of the benefits of the ports system and will demonstrate how to use it to acquire and manage additional software. We will cover how to install using the make command, how to customize your applications, and how to leverage some common tools to make ports maintenance easier.

Read the full instructions here: http://itechtips.com/how-to-install-and-manage-ports-on-freebsd-10-1/