Issue 55
Published February 3, 2021

Last week has brought new releases for NomadBSD, OPNsense plus SAs from FreeBSD. We also take a look at the latest news and tutorials from BSD world.

Releases

The first release candidate of NomadBSD 1.4 is now available. Changes since 1.3.2:

  • The base system has been upgraded to FreeBSD 12.2-p2.
  • The installer has been improved.
  • Automatic graphics driver detection has been improved
  • Touchpad support has been improved and more...

OPNsense 21.1 Released: New and improved are the firewall rules and NAT categories, the traffic graphs supporting IPv6 along with a visual refresh, intrusion detection rule management by policies, an alias for MAC addresses and NAT over IPsec with all phase 2 you could ever want. Last but not least, the serial image now supports UEFI as well.

BSDSec

FreeBSD Security Advisories:

FreeBSD Errata Notices

As always, it's worth following BSDSec. RSS feed and Twitter account available.

News

BREAKING pf(4) change: change route-to so it sends packets to IPs instead of interfaces: Does your pf configuration have route-to rules? If so, you need to consider the implications of this commit by David Gwynne (dlg@) carefully: change route-to so it sends packets to IPs instead of interfaces. The intention is to make it as easy as nat/rdr to use, and more robust when it's operating.

FreeBSD/i386 demoted to Tier 2 for FreeBSD 13.x: FreeBSD is designating i386 as a Tier 2 architecture starting with FreeBSD 13.0. The Project will continue to provide release images, binary updates, and pre-built packages for the 13.x branch. However, i386-specific issues (including SAs) may not be addressed in 13.x.

This issue of BSD Weekly was brought to you by FreeBSD handbook

OpenBSD on the Lenovo ThinkPad X1 Nano (1st Gen): New smaller device from Lenovo. Status is relative to OpenBSD-current as of 2021-01-27.

Tutorials

Simple and Secure VPN in FreeBSD – Introducing WireGuard: Wireguard is a Virtual Private Network (VPN) technology that aims to enable the easy deployment and configuration of servers and clients. Wireguard is intended to replace the use of IPSec or OpenVPN for many VPN applications.

Setup a Three Node Replicated GlusterFS Cluster on FreeBSD A technology demonstration and tutorial for running a three node replicated GlusterFS volume on FreeBSD. It uses Bhyve virtual machines as the hosts and ZFS as the underlying filesystem for the brick. The following topics are covered: 1) Initializing the host machine for Bhyve, 2) Creating and starting Bhyve VM's, 3) Deploying and configuring GlusterFS, 4) Setting up clients.

Annotate your PDF files on OpenBSD: Annotating (or signing) PDF files is a really simple task using Preview on macOS. You can’t do it on OpenBSD using Zathura, Xpdf etc. But there is a software in the ports that can achieve this: Xournal.

NetBSD on the EdgeRouter Lite: Running the NetBSD/evbmips port on Ubiquiti EdgeRouter Lite.

More

As always, there are more sources of BSD goodness. Latest BSD Now talks about GNN's tips for surviving Cabin Fever and Coding from Home, Self-host a password manager on OpenBSD, Preliminary OpenBSD Support added to OBS, Dan's CURL tip of the Day, List of some Shell goodies for OpenBSD, and more.

The Valuable News weekly series is dedicated to providing summary about news, articles and other interesting stuff mostly but not always related to the UNIX or BSD systems. The latest is from 2021/02/01.

In Other BSDs for 2021/01/30 is out, too.

Did we miss anything?

This newsletter is made from your content on DiscoverBSD and BSDSec. Submit the stuff we missed so it can appear next time.

Do you have an OSS BSD-related project that you would like to showcase in BSD Weekly? Reply to sender and we can showcase you as a sponsor of an issue (for free).

Do you know anyone who would like this newsletter? Consider forwarding and tell them to subscribe.

Thanks for reading and see you next week! Stay home and stay safe!