This tutorial aims at teaching the basics of the BGP Protocol and some of the current best operational practices. The agenda of the tutorial is the following:
- Introduction to routing
- Difference between IGP and EGP
- Brief introduction to OSPF/IS-IS
- Introduction to BGP
- Exercise: Setting up a BGP Session with an upstream
- The BGP State machine and message types
-...
The OpenBSD Packet Filter (PF) is at the core of the network management toolset available to professionals working with the BSD family of operating systems.
Understanding the networking toolset is essential to building and maintaining a functional envirionment. The present session will teach the principles and hands-on operation of the extensive network tools available on OpenBSD and sister...
Google and Microsoft dominate email, but it's still possible to run your own mail server provided you use modern protocols and maintain acceptable behaviors. This half-day tutorial will take you through configuring your own mail system, from a bare BSD operating system up through SPF, DKIM, and DMARC, and discuss the social rules needed to get your messages into Gmail and Outlook.
We'll...
Transport Layer Security is one of the least well-understood parts of system administration. This tutorial will take you into a deep dive into the management of TLS. We'll discuss:
- how TLS Works
- what TLS provides, and what it doesn't
- assessing TLS configurations
- the ACME protocol and Let's Encrypt
- OCSP and Certificate Revocation
- CAA, HSTS, and Certificate Transparency
*...
If you have never been to BSDCan before, show up. We'll have a 15-minute talk about how the con works, then introduce you to experienced BSDCan attendees to help you get the most out of your BSDCan experience.
Experienced members of all projects are requested to attend, help first-timers feel welcome, meet new people, and guide them through an unfamiliar event.
We will also have people...
Projector will show session from 1160 in case the room is overloaded
In 2023 the FreeBSD Project celebrated its thirtieth year of providing a complete system distribution. This talk tries to understand what it is that has made FreeBSD one of the few long-term viable open source projects. Most of the projects with long-term successes are sponsored by companies that base their products around the open-source software that they actively nurture. While FreeBSD...
The FreeBSD open source operating system provides a powerful set of features to facilitate the deployment, virtualization, and serving of Microsoft Windows environments ranging from small research labs to enterprise deployments. Its exemplary integration with the OpenZFS file system and volume manager, its bhyve hypervisor, and its overall unity play key roles in FreeBSD’s ability to perform...
The HardenedBSD Project is a "spork" of FreeBSD that aims to provide the wider BSD community with a clean-room reimplementation of the publicly-documented bits of the grsecurity patchset for Linux. The cofounders of the project started collaborating in 2013, and the project become official in 2014.
HardenedBSD goes above and beyond its original goal by providing extra security enhancements,...
Building custom packages for a powerpc or mips network appliance that's too painfully small to build anything itself? With pkgsrc, the customizable cross-platform packaging system from NetBSD, you can cross-build from a large repository of packages on your beefier laptop, workstation, or server instead -- and not just across architectures, but soon across operating systems too.
pkgsrc will...
USB Debug Capability (DbC) is a standardized functionality in Host Controller Interface of USB 2.x and 3.x. It is a hardware-level circuitry available as a hidden serial communication channel that can work even with no operating system support and is supposed to be an out-of-band access endpoint for debugging. When a kernel panic occurs, we cannot get debugger access on laptops or...
Subfiles provide a way for the user to store files ”within” other files. They can be found in a variety of different file systems with a variety of limitations and use cases. Subfiles are not currently available to the NetBSD user. William Dobbins and Philip Nelson attempted to change this in 2016 by beginning a subfile implementation for NetBSD. Their progress has been built upon in this new...
In December 2022, Colin Percival assumed the role of Acting Release Engineering Lead for the FreeBSD Project. He managed FreeBSD release engineering for four months, until Glen Barber returned to the role after FreeBSD 13.2-RELEASE.
This is the story of four months of release engineering and a FreeBSD release managed by someone who neither wanted nor expected the job.
Running a network with its own autonomous system, and speaking BGP can be a daunting task. There is also the misconception that it requires expensive hardware from big vendors. The BSDs are nowadays capable of providing enough routing capabilities to be cost-effective, and there are many tools to manage them and their routing configurations.
In this talk I will showcase why one would need...
OpenBSD provides the utility fw_update(8) to handle firmware loading for hardware from manufacturers whose licensing isn't compatible with our base system. We will take a trip into the history of fw_update(8), its structure and why it exists. A recent rewrite provides an illustration of the value OpenBSD places on simplicity and user experience.
I will talk about using FreeBSD, Zabbix, MQTT, Google/AWS/Nordic clouds, Nordic NRF9160 (a cellular SOC), Zephyr RTOS, and other hardware/software components to create a new service for environmental monitoring of vaccines and medications in pharmacies/clinics/hospitals.
Caveat: At the time of this proposal (2024-01-05), the service is still in development, and not actively deployed in any...
The RISC-V port in NetBSD has been years in the making with the most recent efforts bringing success to the project. To enable the successful port, NetBSD needed to gain some supported technologies and undergo some structural changes to facilitate the requirements and recommendations accompanying the RISC-V platform. As the majority porting efforts targeted a virtual platform, physical...
Zelta: A Safe and Powerful Approach to ZFS Replication
In the storage management landscape dominated by overpriced and underperforming cloud-based systems, ZFS stands out as a top-notch enterprise backup and recovery framework—especially with FreeBSD’s longstanding first-class implementation. However, mastering ZFS requires expertise and understanding.
Drawing from my experience managing...
Join our panel of ZFS experts over lunch as they field questions from the audience about ZFS, new features, best practices, and old bugs.
If you deploy ZFS, or are considering doing so, you should join us.
Standards development and application at the Operating System (OS) level are in a complex and evolving state. This talk will not only explore what it means to be POSIX compliant, but will focus on the question: What is the status of POSIX compliance within the BSD sphere in 2024? What are the drivers for POSIX compliance today?
This talk will explore what POSIX compliance means and whether...
After cherishing the discourse that surrounded his talk "BSD for Researching, Writing, and Teaching in the Liberal Arts" at BSDCan 2023, the nutty assistant professor of theology Dr. Corey Stephan is returning to BSDCan with a new merger of his scholarly craft and his use of free and open source software. This talk showcases Stephan’s intended interdisciplinarity in its very title: *Summa...
"It's impossible to run your own email!" Not quite. But you must do it carefully and correctly.
This talk discusses the current state of email, with a focus on the small independent server operator. What do you need to run your own mail? How can you use protocols like DKIM and DMARC without wrecking your ability to communicate with the outside world?
Based on my book "Run Your Own Mail Server."
Pointers have provenance which is the notion that pointers to separate objects of different origins are distinct regardless of the pointer’s address value. This is true in systems programing languages include C, C++, and Rust and deterministically enforced by hardware and software on CHERI systems (systems such a Arm’s PAC and MTE also provide probabilistic enforcement).
We developed...
You've used a BSD, but have you used the open source of it to bend it to your will? Does it grant you freedom, or just confine you to a different set of bugs?
This talk will tell the story of how I got into hacking NetBSD with zero experience in kernel development, and how you can get started with things too even if you aren't an experienced kernel hacker, including:
- making...
This talk presents a pioneering initiative to integrate OpenStack, an open-source cloud computing platform, with FreeBSD, a robust Unix-like operating system. Traditionally, OpenStack has been closely associated with Linux-based environments, leveraging specific Linux features and technologies. This integration aims to expand OpenStack's applicability by harnessing FreeBSD's advanced...
This talk will focus on a userspace implementation of the TCP transport for NVMe in FreeBSD as well as a simple userspace host (client) and controller (server). This will include a description of the transport-independent abstraction layer in libnvmf including the transport switch structure transports such as TCP implement. For the host, the talk will describe the nvmfdd test client showing...
This talk introduces the low level debugger (LLDB) kernel module debug facility for the FreeBSD kernel. The current functional status of LLDB within the FreeBSD kernel is attributed to contributions from [1] and the collaborative efforts of the community. Key functionalities include core dump parsing and memory context building for the coredump, specifically integrated into the process plugin...
At the start of 2023 I traded my 20-year career as a Linux sysadmin for a new life as a full time OpenZFS developer. Going great, thanks for asking!
Because fast iterative development sucks when you need to wait for a reboot after every kernel panic, I wrote quiz, a tool to make fast edit-compile-test cycles on kernel code possible. Under the hood it uses...
Everyone who pays gets food & drink. Alcoholic beverages will be available for purchase.
The venue is generally ours for the entire evening, there is no rush to leave.
This is your last chance to hang with your fellow BSD people. We'll gather at Sens House for an all-you-can-eat all-inclusive dinner, including appetizers and dessert. You final chance to talk to your colleagues. The windows open for COVID safety, so we can all eat together. Admission includes two free drinks per person.
