Tarsnap article and paypal payments

Tarsnap is an online service where you can securely backup your data. It is maintained by Colin Percifal, an ex FreeBSD Security Officer.

Tarsnap is a secure online backup service for BSD, Linux, OS X, Minix, Solaris, Cygwin, and probably many other UNIX-like operating systems. The Tarsnap client code provides a flexible and powerful command-line interface which can be used directly or via shell scripts.

Linux Journal has a 10 page article on Tarsnap in its latest issue.

Collin recently announced you can now pay by credit card for the Tarsnap service, in addition to Paypal.

FreeBSD Supported on Windows Server Hyper-V via Beta Release

Microsoft and collaborators today announced a beta release of drivers that enable the open source FreeBSD 8.2 server operating system to run in a virtual machine (VM) using Microsoft’s Hyper-V Server.

The beta, which isn’t intended for use in production environments, can be downloaded from the GitHub portal here. Installation instructions can be accessed on this page. The code was released under a FreeBSD license.

In the near future, GitHub will supply ISO images of FreeBSD that will include the new drivers. The collaboration, which involved Microsoft, Insight Global, Citrix and NetApp, was highlighted at the BSDCan 2012 event in May.

via redmondmag

Riak Clustered NoSQL Database adds official FreeBSD

Version 1.2 of RIAK, an open source clustered NoSQL database adds official support for FreeBSD and features new approaches to cluster management.

In version 1.2 of the highly scalable distributed database, developers can stage and review multiple cluster changes to see how they affect the system before committing them.

Continues: Riak clustered NoSQL database adds official FreeBSD support


Gnome3 porting to FreeBSD

Personally I don’t like Gnome (2) and Gnome3 even less. There’s good news for those who are waiting for Gnome3 on FreeBSD: Gnome3 porting to FreeBSD.

Gnome3 isn’t working on FreeBSD as Gnome3 uses technologies that are not available to BSDs. I thought Gnome3 to BSD was a dead project till Juanjo Marin (Gnome Dev in Evince and A11y) mentioned a few things about BSD in Gnome’s Marketing ML.

FreeBSD Security Advisory (Bind)

The FreeBSD Security Team has identified an issue in Bind and has issued the following security advisory: FreeBSD-SA-12:05.bind.asc (06/08/2012).
I. Background

BIND 9 is an implementation of the Domain Name System (DNS) protocols. The named(8) daemon is an Internet Domain Name Server.

DNS Security Extensions (DNSSEC) provides data integrity, origin authentication and authenticated denial of existence to resolvers.

II. Problem Description

BIND 9 stores a cache of query names that are known to be failing due to misconfigured name servers or a broken chain of trust. Under high query loads, when DNSSEC validation is active, it is possible for a condition to arise in which data from this cache of failing queries could be used before it was fully initialized, triggering an assertion failure.

III. Impact

A remote attacker that is able to generate high volume of DNSSEC validation enabled queries can trigger the assertion failure that causes it to crash, resulting in a denial of service.

For a workaround and solution, check out the security advisory: FreeBSD-SA-12:05.bind.asc

August BSD Mag: Tuning ZFS on FreeBSD and Set up a VPN Server

The August issue of BSD Magazine is out: Tuning ZFS on FreeBSD.

From the table of contents:

Tuning ZFS on FreeBSD
By Martin Matuska

ZFS is a modern 128-bit file system based on the copy-on-write model. It originates from the OpenSolaris project and has first appeared in FreeBSD in 2008. ZFS has many innovative features including an integrated volume manager with mirroring and RAID capabilities, data checksumming and compression, writable snapshots that can be transferred between systems and many more. In this article the author is going to discuss several tuning options including sysctl(2) knobs and give examples how can ZFS performance and efficiency can be measured and evaluated. This article is intended for FreeBSD users with ZFS version 28 available since 8.3-RELEASE and 9.0-RELEASE.

MPD5 – VPN Server with FreeBSD Setup and Management
By Antonion Francesco Gentile

Mpd5 is a fast, flexible and secure way to make VPN connections on FreeBSD. It requires very few resources and supports a wide range of protocols, a great tool for network managers. By reading this article you will learn to setup and manage a VPN server PPTP based.

PostgreSQL Partitioning
By Luca Ferrari

In the previous articles the main features of PostgreSQL, including server-side programming were shown. In this article a simple application scenario will be used to demonstrate the capability of partitioning huge amounts of data into different tables in different spaces transparently.

Securing DNS Transactions
By Paul Ammann

In the June 2012 issue, we outlined the threats, security objectives, and protection approaches for various DNS transactions. This article provides the steps involved in implementing those approaches, as well as operational best practices that go with those implementations.

MaheshaBSD Server Edition Has Been Just Released!
By Juraj Sipos

Many newcomers to FreeBSD find it difficult to setup their own FTP/WWW server quickly and, on the other hand, experienced users sometimes need to take precautions for unexpected crash situations – that is, to have a strategy for time economization and portability, as these two are valuable assets in our rushing world. From this article you will find out ow to run a simple and smart FTP/WWW server.

New FreeBSD Audio System for the Kernel

Wolfgang Draxinger has started developing a new audio sub-system for the Linux kernel became frustrated by ALSA, OSS4, and PulseAudio. This new audio system is called KLANG, the Kernel Level Audio Next Generation.

The developer hopes KLANG will work not only with the Linux kernel but also the FreeBSD kernel. The open-source project is described as offering

“professional grade audio, that means lowest possible latency, latency compensation and bit exact precision at a very low CPU load. KLANG has been designed as a signal routing system, supporting seamless and transparent signal transport between all endpoints. In practice this means that there’s no distinction between hardware and process endpoints. Each endpoint is either a signal source or a sink, allowing for versatile signal routing topologies. All connections are fully latency compensated. A metronome system synchronizes the signal processing to a configurable set of system internal and external clock sources. This greatly simplifies tasks like audio/video synchronization.”

More information can be found on the KLANG website.