93 min listen
Episode 252: Goes to 11.2 | BSD Now 252
FromBSD Now
ratings:
Length:
94 minutes
Released:
Jun 28, 2018
Format:
Podcast episode
Description
FreeBSD 11.2 has been released, setting up an MTA behind Tor, running pfsense on DigitalOcean, one year of C, using OpenBGPD to announce VM networks, the power to serve, and a BSDCan trip report.
##Headlines
FreeBSD 11.2-RELEASE Available
FreeBSD 11.2 was released today (June 27th) and is ready for download
Highlights:
OpenSSH has been updated to version 7.5p1.
OpenSSL has been updated to version 1.0.2o.
The clang, llvm, lldb and compiler-rt utilities have been updated to version 6.0.0.
The libarchive(3) library has been updated to version 3.3.2.
The libxo(3) library has been updated to version 0.9.0.
Major Device driver updates to:
cxgbe(4) – Chelsio 10/25/40/50/100 gigabit NICs – version 1.16.63.0 supports T4, T5 and T6
ixl(4) – Intel 10 and 40 gigabit NICs, updated to version 1.9.9-k
ng_pppoe(4) – driver has been updated to add support for user-supplied Host-Uniq tags
New drivers:
+ drm-next-kmod driver supporting integrated Intel graphics with the i915 driver.
mlx5io(4) – a new IOCTL interface for Mellanox ConnectX-4 and ConnectX-5 10/20/25/40/50/56/100 gigabit NICs
ocs_fc(4) – Emulex Fibre Channel 8/16/32 gigabit Host Adapters
smartpqi(4) – HP Gen10 Smart Array Controller Family
The newsyslog(8) utility has been updated to support RFC5424-compliant messages when rotating system logs
The diskinfo(8) utility has been updated to include two new flags, -s which displays the disk identity (usually the serial number), and -p which displays the physical path to the disk in a storage controller.
The top(1) utility has been updated to allow filtering on multiple user names when the -U flag is used
The umount(8) utility has been updated to include a new flag, -N, which is used to forcefully unmount an NFS mounted filesystem.
The ps(1) utility has been updated to display if a process is running with capsicum(4) capability mode, indicated by the flag ‘C’
The service(8) utility has been updated to include a new flag, -j, which is used to interact with services running within a jail(8). The argument to -j can be either the name or numeric jail ID
The mlx5tool(8) utility has been added, which is used to manage Connect-X 4 and Connect-X 5 devices supported by mlx5io(4).
The ifconfig(8) utility has been updated to include a random option, which when used with the ether option, generates a random MAC address for an interface.
The dwatch(1) utility has been introduced
The efibootmgr(8) utility has been added, which is used to manipulate the EFI boot manager.
The etdump(1) utility has been added, which is used to view El Torito boot catalog information.
The linux(4) ABI compatibility layer has been updated to include support for musl consumers.
The fdescfs(5) filesystem has been updated to support Linux®-specific fd(4) /dev/fd and /proc/self/fd behavior
Support for virtio_console(4) has been added to bhyve(4).
The length of GELI passphrases entered when booting a system with encrypted disks is now hidden by default. See the configuration options in geli(8) to restore the previous behavior.
In addition to the usual CD/DVD ISO, Memstick, and prebuilt VM images (raw, qcow2, vhd, and vmdk), FreeBSD 11.2 is also available on:
Amazon EC2
Google Compute Engine
Hashicorp/Atlas Vagrant
Microsoft Azure
In addition to a generic ARM64 image for devices like the Pine64 and Raspberry Pi 3, specific images are provided for:
GUMSTIX
BANANAPI
BEAGLEBONE
CUBIEBOARD
CUBIEBOARD2
CUBOX-HUMMINGBOARD
RASPBERRY PI 2
PANDABOARD
WANDBOARD
Full Release Notes
###Setting up an MTA Behind Tor
This article will document how to set up OpenSMTPD behind a fully Tor-ified network. Given that Tor’s DNS resolver code does not support MX record lookups, care must be taken for setting up an MTA behind a fully Tor-ified network. OpenSMTPD was chosen because it was easy to modify to force it to fall back to A/AAAA lookups when MX lookups failed with a DNS result code of NOTIMP (4).
Note that as of 08 May 2018, the OpenSMTPD project is planning a configura
##Headlines
FreeBSD 11.2-RELEASE Available
FreeBSD 11.2 was released today (June 27th) and is ready for download
Highlights:
OpenSSH has been updated to version 7.5p1.
OpenSSL has been updated to version 1.0.2o.
The clang, llvm, lldb and compiler-rt utilities have been updated to version 6.0.0.
The libarchive(3) library has been updated to version 3.3.2.
The libxo(3) library has been updated to version 0.9.0.
Major Device driver updates to:
cxgbe(4) – Chelsio 10/25/40/50/100 gigabit NICs – version 1.16.63.0 supports T4, T5 and T6
ixl(4) – Intel 10 and 40 gigabit NICs, updated to version 1.9.9-k
ng_pppoe(4) – driver has been updated to add support for user-supplied Host-Uniq tags
New drivers:
+ drm-next-kmod driver supporting integrated Intel graphics with the i915 driver.
mlx5io(4) – a new IOCTL interface for Mellanox ConnectX-4 and ConnectX-5 10/20/25/40/50/56/100 gigabit NICs
ocs_fc(4) – Emulex Fibre Channel 8/16/32 gigabit Host Adapters
smartpqi(4) – HP Gen10 Smart Array Controller Family
The newsyslog(8) utility has been updated to support RFC5424-compliant messages when rotating system logs
The diskinfo(8) utility has been updated to include two new flags, -s which displays the disk identity (usually the serial number), and -p which displays the physical path to the disk in a storage controller.
The top(1) utility has been updated to allow filtering on multiple user names when the -U flag is used
The umount(8) utility has been updated to include a new flag, -N, which is used to forcefully unmount an NFS mounted filesystem.
The ps(1) utility has been updated to display if a process is running with capsicum(4) capability mode, indicated by the flag ‘C’
The service(8) utility has been updated to include a new flag, -j, which is used to interact with services running within a jail(8). The argument to -j can be either the name or numeric jail ID
The mlx5tool(8) utility has been added, which is used to manage Connect-X 4 and Connect-X 5 devices supported by mlx5io(4).
The ifconfig(8) utility has been updated to include a random option, which when used with the ether option, generates a random MAC address for an interface.
The dwatch(1) utility has been introduced
The efibootmgr(8) utility has been added, which is used to manipulate the EFI boot manager.
The etdump(1) utility has been added, which is used to view El Torito boot catalog information.
The linux(4) ABI compatibility layer has been updated to include support for musl consumers.
The fdescfs(5) filesystem has been updated to support Linux®-specific fd(4) /dev/fd and /proc/self/fd behavior
Support for virtio_console(4) has been added to bhyve(4).
The length of GELI passphrases entered when booting a system with encrypted disks is now hidden by default. See the configuration options in geli(8) to restore the previous behavior.
In addition to the usual CD/DVD ISO, Memstick, and prebuilt VM images (raw, qcow2, vhd, and vmdk), FreeBSD 11.2 is also available on:
Amazon EC2
Google Compute Engine
Hashicorp/Atlas Vagrant
Microsoft Azure
In addition to a generic ARM64 image for devices like the Pine64 and Raspberry Pi 3, specific images are provided for:
GUMSTIX
BANANAPI
BEAGLEBONE
CUBIEBOARD
CUBIEBOARD2
CUBOX-HUMMINGBOARD
RASPBERRY PI 2
PANDABOARD
WANDBOARD
Full Release Notes
###Setting up an MTA Behind Tor
This article will document how to set up OpenSMTPD behind a fully Tor-ified network. Given that Tor’s DNS resolver code does not support MX record lookups, care must be taken for setting up an MTA behind a fully Tor-ified network. OpenSMTPD was chosen because it was easy to modify to force it to fall back to A/AAAA lookups when MX lookups failed with a DNS result code of NOTIMP (4).
Note that as of 08 May 2018, the OpenSMTPD project is planning a configura
Released:
Jun 28, 2018
Format:
Podcast episode
Titles in the series (100)
Episode 239: The Return To ptrace | BSD Now 239: OpenBSD firewalling Windows 10, NetBSD’s return to ptrace, TCP Alternative Backoff, the BSD Poetic license, and AsiaBSDcon 2018 videos available. by BSD Now