• LOGIN
  • No products in the cart.

SSH Hardening with Google Authenticator and OpenPAM, ZFS Feature Flags, DevOps …

Dear Readers,

It is nice to meet you again and present to you with the next BSD issue. I hope you will find the articles interesting and eventually learn many useful tips and tricks. This time, I want to focus on short but useful hints that will help you in your daily tasks. Enjoy reading and share your thoughts with me.
As always, I would like to thank you all for submitting great articles and willingness to help me create this issue of BSD magazine.

Enjoy reading!
Ewa and the BSD Team

INSIDE

In Brief
Ewa & The BSD Team
This column presents the latest news coverage of breaking news events, product releases and trending topics from BSD.

FREEBSD

ZFS Feature Flags
Natalia Portillo
Feature flags are a list of features that can be created by any implementation of ZFS, and can be in three states: disabled, enabled or active. Natalia will tell you more about them. By reading her article, you will learn more.

SSH Hardening with Google Authenticator and OpenPAM
Abdorrahman Homaei
Google Authenticator uses the Time-based One-time Password Algorithm (TOTP), which means taking advantages of a key and time to make a secret six digit code. In addition to your password, you’ll also need this code to login. The point is you don’t need to use the internet; all you need is synchronized time. This technique is called 2-Step Verification. In this article, we share about Google authenticator (phone app).

Debugging and Troubleshooting
Carlos Antonio Neira Bustos
Debugging/Troubleshooting is a useful skill when you are working in maintaining legacy applications by doing some small incremental changes to an old code base, where the code has been manipulated by so many users over the years, and it is becoming a mess. Also, the management had decided that the code works as it is, and you are not allowed to change it all over “the right way (tm)”. In this tutorial, I’m going to use a real life situation where debugging skills will save us time, headaches, and possibly find a solution with a minimal amount of effort.

DEVOPS

Can DevOps Really Be Defined?
E.G Nadhan
DevOps is a way of life for people with the right mindset to embrace the culture of collaboration while scientifically automating the continuous delivery of software features with rigor and discipline of continuous integration, and a passion for continuous testing while using the power of standardized tooling to constantly monitor everything being done. Huh? You say?

TIPS & TRICKS

WannaCry / Ransomware
Daniel Cialdella Converti
Daniel will try to explain in "a simple way" what happened (and will happen again) with WannaCry / Ransomware incidents which occurred the previous weeks. This is a text for non-technical people or laymen, or who may have been affected i.e the victims.

Static Sites Alongside Dokku on Digital Ocean
Henrik Nyh
If you set up Dokku with Digital Ocean’s one-click installer, you will have a dokku user home directory (/home/dokku), and a root user home directory (/root).
Neither seemed appropriate to store the static sites. Dokku makes assumptions about files stored in the Dokku home directory. And Nginx (the www-data user it runs as) can’t access stuff under /root. Never mind any security implications of using the root account for this.

OPEN SOURCE BLOG PRESENTATION

Sapere Aude
Vitaly Repin
Vitaly still enlightens us on the belief that knowledge can help us to improve our life. He uses his blog to spread the knowledge and inspire readers to use the information contained therein. However, his preference to use photo and video sharing services in his blog should not be confused, his primary goal is still to share knowledge and NOT to share his life moments.

INTERVIEW

Interview with Daniel Cialdella Converti
Ewa & The BSD Team
As an I.T. person at work, I'm always resolving issues every day which are related to people's projects. This sounds obvious but recover/restore/mistakes are the big issues. I think 70% of my time I'm a fireman and 30% an architect.

COLUMN

The latest worldwide WannaCry malware attack crippled the British National Health Service for hours, delaying non-essential operations and shutting down accident and emergency departments. Now that the inevitable finger pointing exercise has begun, who should be held responsible?
Rob Somerville


Download
File
BSD Magazine 5/2017 (93) (iBooks)
BSD Magazine 5/2017 (93) (PDF)

Leave a Reply

1 Comment on "SSH Hardening with Google Authenticator and OpenPAM, ZFS Feature Flags, DevOps …"

Notify of
avatar
Sort by:   newest | oldest | most voted
Franck PORCHER
Member
Hi there BSD Mag, I’ve seen you have fiddled over the years with changing the filename of the monthly download. However, no format has yet been really convenient, for none never sorted naturally 🙁 What about adopting the following format once for all, which DOES sort nicely using a simple ‘ls’ without resorting to anything particular : BSDMagazine-YYYY-MM-nnnn.{pdf,…}, Something easily produced by resorting to the standard libc sprinf(3) and its derivatives, directly available in any modern language? For instance, in Perl, you would write : my ($year, $month, $issue_number, $filetype) = (2017, 5, 93, ‘pdf’); my $bsdmag_filename = sprintf “BSDMagazine-%04d-%02d-%03d.%s”,… Read more »
wpDiscuz
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2013