By Droso Again this year, the FOSDEM organization had reserved a DevRoom for the BSDs. I hadn’t been to FOSDEM for several years and was pleasantly surprised to see how many BSD developers and users had turned up.
Managing default Unix file permissions with adduser and umask
By Chad Perrin, Special to ZDNet Asia
he fundamental key to basic file-level security on a Unix system is to keep file permissions as restrictive as possible without stopping the system from doing what it needs to do, and without preventing yourself from accessing the files the way you need to access them.
As that article explains, in the general case, system admins for Unix and Linux systems should ensure that the owner of a file gets full permissions for it while other users get no access at all by default. Making sure that happens smoothly without adding a lot of administrative overhead to your day requires automating permissions defaults for new files.
(more…)Running Linux Applications on FreeBSD
by Bill Swingle
FreeBSD users have long enjoyed the operating system’s speed and stability, but one area FreeBSD has always played "catch up" to Linux in is new applications. While Linux has had the limelight, software vendors have been prone to porting their applications to Linux over FreeBSD.
(more…)FreeBSD rushes out zero-day root patch
Tom Espiner ZDNet UK
The security team for the open-source FreeBSD operating system has rushed out a patch for a zero-day local root vulnerability.
The zero-day was published on the Full Disclosure mailing list on Monday, and the patch was made available on the same day. The vulnerability gives local users administrative privileges which allow them to run any code they choose.
(more…)New version of mergemaster with type checking
I think the commit message explains this pretty well, but I wanted to give a heads up message because this is very likely to ring a few bells the first time through. I personally noticed it as result of the recent termcap change, and I’m sure I’m not the only one with stale stuff in /etc/ in particular.
Please make sure that you employ (what should be) the usual precaution of backing up /etc before running this version of mergemaster. I also encourage regular use of the -P option (or PRESERVE_FILES=yes in ~/.mergemasterrc or /etc/mergemaster.rc) however while I believe that this new code is -P safe backing up /etc first is preferred this time around.
Author: dougb
Date: Sat Dec 12 02:19:41 2009
New Revision: 200425
URL: http://svn.freebsd.org/changeset/base/200425
Log:
Over time things that used to be files/directories/links can change to something else. So add code to detect when things don’t match and give the user choices about how to fix it.
If we’re using -P and something in the above check needs to be moved we need to have the directory there for it, so create it at the beginning and delete empty versions of it at the end.
The case where something used to be a file or link and now is supposed to be a directory (e.g., /etc/security) is especially dangerous, so make failure to install a necessary directory in $DESTDIR a fatal error.
Astaga!com Gelar Kontes SEO Berhadiah Rp 30 Juta Lebih
Astaga!com Gelar Kontes SEO Berhadiah Rp 30 Juta Lebih
Kontes No Comments »Kontes SEO - Portal lifestyle dan entertainment Astaga!com mengadakan kontes Search Engine Optimization (SEO). Kontes ini dimulai Senin, 30 November 2009 tepat pukul 16.00 WIB.
Total hadiah Kontes SEO Astaga!com sebesar Rp 30 juta lebih. Penilaian pemenang ditentukan oleh mesin pencari Google Indonesia (Google.co.id). Pemenang diambil dari nomor urut pertama hingga sepuluh.
Kata kunci atau keyword yang dilombakan adalah Astaga.com Lifestyle On The Net. Kontes berakhir 3 Maret 2010 pukul 00.00WIB. Informasi lengkap klik di sini.
China chooses FreeBSD as basis for secure OS
by : Chad Perrin
Earlier this month, in "China blocks U.S. from cyber warfare", the Washington Times reported that China has developed a "more secure operating software for its tens of millions of computers and is already installing it on government and military systems, hoping to make Beijing’s networks impenetrable to U.S. military and intelligence agencies."
(more…)