About me: I am a long-time FreeBSD user, since the beginning on the 90's. Studied electrical engineering, telecommunications and computers, and since about 2007 specialized in cybersecurity, which is what I do in my daily job :-) For more information, I think that Mr. Google can help you
Oh... yes... I am a VI / VIM user since i started using UNIX
It's the best text editor (for me :-)
Created this channel to post random stuff (whenever I manage find time to do it!) that I personally find cool, about my hobbies and FreeBSD. Hope you enjoy the content!
Пікірлер
Great channel. Thanks for the videos.
Thank you also for the comment. I am still learning how to make videos... hopefully they are getting better in quality :-)
Thanks like the other person concerned great to know. Will i get time to play with it? As a native English person we pronounce J as Jay and G as Gee. I guessed what you meant. This is just a tip. I am trying to learn Mandarin Chinese and my tones are terrible so people from China and Taiwan look really confused some times when i speak. Of course your English is much better than my Mandarin. More importantly FreeBSD content is great. I've got a 2.2.1 ISO downloaded ready to run in 86Box to bring back my very first FreeBSD install from 1996 or 1997. So you are making an impact.
Really nice :-) Thanks. For me, my language skills vary - I am originally from Portugal, but living in Germany since more than 20 years; and... my wife is from Vietnam... so, not only did I loose part of the Portuguese accent, but I also picked up lots of accents from different areas/countries. The important thing is that what I am saying can be understood. Very glad that you are looking at FreeBSD version 2.2.1; by the way - 86Box is now officially in the ports tree, so you can just "pkg install 86Box", and all should work out easily and fine!
Although I'm not likely to be ever using this, I can appreciate your work with this.. thank you!
Thank you. Still learning how to port software to FreeBSD, but I am getting better due to awesome help from the community :-)
Maybe even more heron if also left a thumbs up) I'm not really familiar with bsd, but watched the whole thing. On your channel I see a lot of freebsd but what about openbsd?
Hi; thanks for the comment. I have tried openbsd and I find it really nice, but I mainly use FreeBSD myself. Maybe at some point in time, I will take a closer look, but for now, I'm sticking with what I feel more comfortable with :-)
Please make a video on dual booting linux/windows and freebsd side by side.
I will have to investigate a bit how to do it...This suggestion is certainly a really nice idea :-) I might take some time to achieve this, as it is summer vacation, and kids are jumping around... but I hope to get back to this ASAP. Thanks for the comment!
I'm your hero, i didn't do much to deserve that. I wonder if there is much modern stuff that would compile up on FreeBSD 1.0. might be surprised that some things work. I recall bash used to be fairly easy to compile. So maybe that might work. Maybe Apache web server. I saw they included inn as a package or port already. I wonder if ssh will compile? I'm thinking of trying this myself. 😁
Awesome! Yes, I am also thinking about trying out some extra software... currently looking at a good source/collection of software specifically for 1.0, or maybe just a bit later (e.g. 1.1). If you know of a possible source for old ports, I would be very grateful... For the 86Box, you can download the patch from here: bugs.freebsd.org/bugzilla/show_bug.cgi?id=280205 Should compile smoothly... or, you can just wait a bit until it is in the official ports tree, and then just "pkg install" and rock-n-roll :-)
Nice one well done.
Thank you for the comment :-)
but my utm is not connected to internet
Hi. you mean that you cannot install packages with pkg? an easy way to solve that is to set the machine to bridged mode... Also, you might want to check the information here: docs.getutm.app/settings-qemu/devices/network/network/ Cheers!
why I would want to create a system service?
Hi. A "regular" user should (normally) not have the need to create any service. However, if you are a software developer that wants to deploy a self-developed application that provides some service, or have some program that should be used as a service but does not have a corresponding rc script, then this information might be useful :-)
@@BSDJedi makes sense! appreciate the explanation
Thank you very much, for your really inspiring and informative videos - (its time for me to install my first free BSD ) 👍
Thanks for the comment also :-) I am very happy that you find the videos interesting and motivating. Go ahead - give FreeBSD a try - you might just "get hooked" :-)
Last (only?) time I used Doxygen was for Gentoo many years ago on a P3 with an old 5400 rpm drive and a few KB of RAM. I aged several years during the build.
Nice :-) Lets be grateful to the video-editing Gods, that made a 5min (still super fast!) doxygen documentation generation clip in only about 15 seconds...
@@BSDJedi and just a few improvements in IPC and extended instruction sets 😀
Wow! Never expected such a fast response. I have been searching for a while to see a really good freebsd based KZread channel and your's fit in the right place.
Thanks! Luck has stroke in this case, as my kids are out for the day, and I can focus some time on my hobbies :-)
Please make a video on how to generate documentation using doxygen on a freebsd kernel
Thanks for the comment. OK, stay tuned :-)
Done ...
Another great tutorial with real examples. Glad you removed the red root shell :}
Thanks :-) Yes - I found a way to change the color of the cursor depending on the user... so... no more red terminal background... hahaha
Ah, now I realized that this color trickery is still not to be seen in this video... but the next one will have... blue cursor for regular user, red cursor for root... that should be fine :-)
excellent Video, subbed :)
Very glad you liked :-) Thanks for the sub.
I knew about libxo, but not that so many utilities were already patched to use it. This opens up alot of doors for automation scripts. Fantastic content and work!
Yes, indeed very nice for automation :-) Thank you for passing by
@@BSDJedi if you keep putting out fascinating *BSD content, you can bet on me keepin on passing by :D
Awesome content as always. Subscribed!
Thank you :-)
Very handy util it seems, just seems a shame it's not more widely adopted into the system utils. I've used the jc python package on Linux before but this seems much cleaner, the benefits of using and OS over a distro I guess.
Thanks :-) From what I understand, more and more system utilities are getting the "libxo treatment"; it just takes time but also requires that someone is willing to do the changes and commit back to the FreeBSD project... The jc tool is really neat - I did not know about it before; always learning... IMHO, the advantage of incorporating libxo directly into the binary is that no text processing needs to happen, therefore no chance to get anything garbled up (e.g. due to the potentially different output produced by different binary versions, or misinterpretation of spaces/tabs...) - and that is probably what you mean with "much cleaner" :-)
@@BSDJedi Nothing happens quickly in the BSD ecosystem it seems, the smaller pool of developers (compared to Linux) is obviously one reason. Keep up the good work, much appreciated.
Red Terminal color is not good to read and follow your steps.
Yes, I agree - had good intention, but at the end was a bad choice... I learned the lesson - next videos will not have red color in the terminal... in any case, i hope you liked the content... cheers!
What color scheme are you using?
Hi. If you mean in the terminal, I am using "Solarized Light" in this video, and my terminal is the "Terminator". I know many people prefer darker themes, but I cannot use them. If you mean the cursor color in the terminal, then this setting I have changed myself using the PS1 environment variable... :-) Hope I answered your question....
oh man, and now I have the song `Memories` stuck in my head..... The really neat part, is you can use the same set of IIRC 4 commands, to build and install every single version of FreeBSD from 386BSD all the way to FreeBSD 14. This IMO is a much neglected definition of stability. (I'll qualify that that # of commands figure, is excluding SCM work)
Oh wait... now I also have that song in my head... hahaha :-)
Nice video! I saw that video on FreeBSD discord. Thank you.
Cool. Nice that you stop by :-) and thank you for the comment.
Nice video :-)
Thanks! Glad you enjoyed :-)
can you show the demo on cve-2020-25584 i.e how to escape from the jail
Thank you - nice one - I was not aware of this... :-) Always learning... I will check it out and if I can easily reproduce, I might go for a video...
@@BSDJedi have you check
Hi. Yes, I have checked the problem, but until now I could not reproduce the issue, and could not find any source with a good PoC. Still investigating if I can do it, in some free time I have, but looks a bit difficult to get it done. Last time I tried to debug the kernel, to see if the method that I am using is somehow working. The description of the issue is very laconic, which is good - not only the (potential) issue has been fixed, but it makes it take much more effort for a potential attacker to reproduce it... If you have any information about a PoC, I would be glad to investigate further; otherwise it might just take time to get things all together.... :-(
@@BSDJedi THANKS FOR THE REPLY
Many thanks for the sharing. For the red colour, I think the idea is excellent except that it is too red. What about black-on-white for users, and black-on-pink for root? Alternatively, can we have terminals bordered with different colours?
That is a great suggestion with the bordered colors - I (currently) do not know how to do it, but will for sure investigate it because that would be the optimal solution, IMHO :-)
Setuid is a feature from another era where security was not as big of a concern. I'd recommend turning it off on the filesystem level. A similar exploit exists with NFS. So never mount NFS and allow setuid as you could get done by root on another machine becoming root on your machine. I need to play with jails. Looks fairly straight forward.
Also great work and don't worry too much about the red. I'm just glad you're making content about the wonderful OS that is FreeBSD. Red is a great FreeBSD colour.
Cool. I did not know about the NFS thingy - but it only makes sense. In my understanding, jails are "glorified chroot's" - but don't quote me on that :-) Yes they are really really nice but, as with everything, if someone uses this technology, they should know what they are doing...
I started to watch this at work and my phone and didn't think the red was too bad, then I got I got home and watched the rest ... yeah I see what you mean. Nice video.
Yes... I am still learning a lot on how to make these videos good quality. Thanks for the nice comment :-)
@@BSDJedi and it's appreciated. Used to use OpenBSD back in the day (when ever that openssh auth bypass by Gobbles came out) and more recently Nomad and Ghost spins but thinking it's time to format the laptop.
nice one. simple, safe and self-hosted. you also. got keepassdx on fdroid
this video is epic man, thanks for sharing 🙌
Thank you for stopping by, and I am really happy you liked it :-)
This video is very good in step by step explanation how FreeBSD/(potentially Linux) mailware might work if an attacker knows both user and root passwords and ssh login by password is working. After doas (or any other similar software) is installed, some PAM configuration might be tampered to never log attempts to do things as a superuser.
Yes, you are absolutely right. If a system is exposed to the internet it should be hardened. Just try to deploy a machine in AWS and you will see than in a matter of minutes, all sorts of random IP addresses will be trying to brute-force it...
Above my level of understanding FreeBSD, but you know, I'm glad as I can watch from yourself and learn..... thank you!
Glad that I can put out some useful things out there. But, as always, do consider hardening the system, especially if it is exposed on the internet...
7:23. Yes very simple:-)
Always trying to go by the KISS principle :-)
Thats nice. Used to do those kind of thing with ''expect'' script over ssh or rsh session
Yes - that is also an awesome way to do it. Unfortunately the Ansible connection does not work with expect or, if it does, I am now aware of how to make it work... But expect might be also a very simple solution, especially to bootstrap local machine deployments, e.g. when using bhyve or VirtualBox :-)
Gcompris in french ''J'ai compris'' means i have understood
Cool. Never realised that! thanks for pointing it out :-)
Very interesting thank you!
Very happy that you found it interesting. All the best; cheers :-)
Very nice. I started at freebsd 4 if i remember well. I remember xf86 was much responsive with freebsd than linux. The x11 mouse pointer was very lagy under linux whereas it was like win95 cursor with freebsd...
Nice. I got introduced to Linux and FreeBSD through a radio amateur group which my father used to attend every week or so. In this group there were some colleagues that were also giving classes at the university; I was very young back then - I was not even in high-school; must have been like 12 or 14 years old... and this means that, since I was not having access to university, and internet access was mostly non-existing (we either used BBS, forwarded emails through AX.25, or had our own packet station like F6FBB), I had to learn things by myself - read documentation and come up with my own solutions... :-) [btw- the f6ffb webpage is still online, but the content is frozen from 96 - the last release...] A bit later, when I entered university, i got again acquainted with FreeBSD, and had the opportunity to work as a sys admin to the students‘s network (running Linux/Slackware).
Did you check smolbsd ? It is a sized down netbsd booting in less than a second, i think you will enjoy it
Great video! Didn't understood the advantage to disable video and enable serial knstead...
Thanks! The problem is that as far as things are, I could not get any video driver in FreeBSD to work with UTM nicely. So, I just disabled it, and went for the solution that I presented. If in the future I can make it work (since UTM is a relatively active project, this will change), then there should be no need to disable video...
4:30 ping 1.1 is faster too (it will ping 1.0.0.1 cloudflare)😊
Oh! Also nice. Always learning... thanks :-)
3:20 halt is faster
Nice. Never knew that :-)
Crikey - thanks for this, it certainly shows how things have changed....
Yes, but not only changed for change itself, but changed for the best :-)
My first BSD was 2.2.1 i think maybe a little earlier. Have never seen 1 before. Thanks for sharing.
That is really awesome. If I remember correctly, I started with 4.x or 5.x; but I wanted to know/experience what it was like to get the very first release up and running :-)
@@BSDJedi I was introduced to FreeBSD at the end of first year university. Ended up knowing it really well. Made a diskless FreeBSD X server for a uni project. Managed to get NE2000 with a EPROM loading files via tFTP and NFS. Pretty fun project. So much easier these days. So seeing MFS root floppy brought back memories because at one point I was trialling booting from floppies and then NFS. However etherboot was a thing and that was a much smaller floppy than 2x1.44MB. not sure if 14 has support for floppy booting.
Compiling a kernel was worthwhile back in 2.2. mainly because I had 8MB of RAM. So every byte saved was able to be used. FreeBSD 1 may have been able to access your CD if it was SCSI but I think IDE support only came later. In those days I had a 2x Matsushita drive running off a sound blaster 16. That was the fashion at the time.
@@vk3fbab Indeed, it sounds like a cool project. At the university (I started in 97 at FEUP in Portugal), I was part of the sys admin group for the student's Linux systems. I also remember discussing programming EPROMs with me colleagues but, if I remember correctly, it had to do with the MAC addresses - dont remember why now we wanted to change the MAC addresses, and we could only do this by reprogramming the EEPROM. With later network cards you could do it from the command line... :-)
@@vk3fbab Nice, I think I read something on the FreeBSD 1.0 docs about the SCSI CD-ROM drives - maybe I can investigate if this is possible with PCem, or maybe with qemu... Back then, I also had the Sound Blaster card, and I distinctly remember that the CD-ROM connected to that card also; and yes, I think it was also a Matsushita. But I also remember a CD-ROM where you had to put the CD inside a "cover" that would be itself inserted into the drive - dont remember the model / brand though...
👍
Thank you for the thumbs-up :-)
Nice work. Just getting back into FreeBSD after missing a few versions. Thanks for some inspiration
Awesome. Glad I could serve as an inspiration, because FreeBSD is really cool! Cheers!
Great video! I've fought and lost against ptrace before, but I've never even tried to set traps. It's pretty cool to see how it's done!
Nice :-) Glad that you found the video to be interesting. I know what you mean; I have been there myself... :-)
I'm loving your videos, they are more technical in nature than mine, and that's good....keep up the great work!
Thank you! 😃
underrated.
Thanks! :-)
Hi, thank you for this interesting video, i always asked myself how gdb worked and this is a good beggining of an answer. Great stuff
I am very glad that you found the video to be useful. Yes - that was my idea behind making the video - to bring some understanding on how a debugger, like GDB or LLDB work; not necessarily to (start to) write another debugger... ☺
super excellent, just wrote my own rd.d script following this tutorial and now I have ttyd working for me. thank you!
Awesome. Thanks! The stuff I have shown has relatively poor security; if you want to expose the service on the net, you can use nginx as a web server...
Another masterpiece 👏🔥
Thank you! :-) Such nice comments are a really good incentive to produce further content.