Other Documents
 Upgrade Guide
 Following -current
 Following -stable
 Port Testing Guide
 Using AnonCVS
 Using CVSup
 Manual pages
 Bug Reporting
 Mailing lists
 PF User's Guide
 OpenSSH FAQ

PDF files
 OpenBSD FAQ
 PF User's Guide

Text files
 OpenBSD FAQ
 PF User's Guide

Back to OpenBSD
 [Back to the main OpenBSD website]

  [OpenBSD]

OpenBSD Multimedia Resources List

Links on this page refer to multimedia resources (podcast, vodcast, audio recordings, video recordings, photos) related to OpenBSD or of interest for OpenBSD users.


This list is available as chronological overview, as a tag cloud and via the sources.
This list is also available as RSS feed

If you know any resources not listed here, or notice any dead links, please send details to Edwin Groothuis so that it can be included or updated.

Newest resources

May 2008

  • A Tale of Four Kernels
    Source: Diomidis Spinellis
    Added: 17 May 2008
    Tags: freebsd, linux, solaris, windows, article, kernel, diomidis spinellis
    Diomidis Spinellis. A tale of four kernels. In Wilhem Schfer, Matthew B. Dwyer, and Volker Gruhn, editors, ICSE '08: Proceedings of the 30th International Conference on Software Engineering, pages 381-390, New York, May 2008. Association for Computing Machinery. , Diomidis Spinellis. A tale of four kernels. In Wilhem Schfer, Matthew B. Dwyer, and Volker Gruhn, editors, ICSE '08: Proceedings of the 30th International Conference on Software Engineering, pages 381-390, New York, May 2008. Association for Computing Machinery.
    The FreeBSD, GNU/Linux, Solaris, and Windows operating systems have kernels that provide comparable facilities. Interestingly, their code bases share almost no common parts, while their development processes vary dramatically. We analyze the source code of the four systems by collecting metrics in the areas of file organization, code structure, code style, the use of the C preprocessor, and data organization. The aggregate results indicate that across various areas and many different metrics, four systems developed using wildly different processes score comparably. This allows us to posit that the structure and internal quality attributes of a working, non-trivial software artifact will represent first and foremost the engineering requirements of its construction, with the influence of process being marginal, if any.

  • Managing OpenBSD Environments
    Source: New York City *BSD User Group
    Added: 12 May 2008
    Tags: nycbug, presentation, openbsd, system management
    MP3 version (11 Mb, 103 minutes)

    This talk is the result of an after-meeting discussion with a few folks, when it became apparent that there is some confusion as to how to deal with OpenBSD in small and large environments. The topic of installation and upgrading came up again. This talk is aimed to hopefully dispel many of the rumors, provide a thorough description and walk through of the various stages of running OpenBSD in any size environment, and some of the features and tools at the administrator`s disposal.

    Okan Demirmen has been working with UNIX-like systems for as long as he can remember and has found OpenBSD to match some of the same philosophies in which he believes, namely simplicity and correctness, and reap the benefits of such.

  • OpenBSD 4.3 Release Song - "Home to Hypocrisy"
    Source: OpenBSD
    Added: 03 May 2008
    Tags: openbsd, artwork
    Ogg version (6.5 Mb, 4 minutes 48 seconds), MP3 version (8.2 Mb, 4 minutes 48 seconds)

    We are just plain tired of being lectured to by a man who is a lot like Naomi Campbell.

    In 1998 when a United Airlines plane was waiting in the queue at Washington Dulles International Airport for take-off to New Orleans (where a Usenix conference was taking place), one man stood up from his seat, demanded that they stop waiting in the queue and be permitted to deplane. Even after orders from the crew and a pilot from the cockpit he refused to sit down. The plane exited the queue and returned to the airport gangway. Security personnel ran onto the plane and removed this man, Richard Stallman, from the plane. After Richard was removed from the plane, everyone else stayed onboard and continued their journey to New Orleans. A few OpenBSD developers were on that same plane, seated very closeby, so we have an accurate story of the events.

    This is the man who presumes that he should preach to us about morality, freedom, and what is best for us. He believes it is his God-given role to tell us what is best for us, when he has shown that he takes actions which are not best for everyone. He prefers actions which he thinks are best for him -- and him alone -- and then lies to the public. Richard Stallman is no Spock.

    We release our software in ways that are maximally free. We remove all restrictions on use and distribution, but leave a requirement to be known as the authors. We follow a pattern of free source code distribution that started in the mid-1980's in Berkeley, from before Richard Stallman had any powerful influence which he could use so falsely.

    We have a development sub-tree called "ports". Our "ports" tree builds software that is 'found on the net' into packages that OpenBSD users can use more easily. A scaffold of Makefiles and scripts automatically fetch these pieces of software, apply patches as required by OpenBSD, and then build them into nice neat little tarballs. This is provided as a convenience for users. The ports tree is maintained by OpenBSD entirely separately from our main source tree. Some of the software which is fetched and compiled is not as free as we would like, but what can we do. All the other operating system projects make exactly the same decision, and provide these same conveniences to their users.

    Richard felt that this "ports tree" of ours made OpenBSD non-free. He came to our mailing lists and lectured to us specifically, yet he said nothing to the many other vendors who do the same; many of them donate to the FSF and perhaps that has something to do with it. Meanwhile, Richard has personally made sure that all the official GNU software -- including Emacs -- compiles and runs on Windows.

    That man is a false leader. He is a hypocrite. There may be some people who listen to him. But we don't listen to people who do not follow their own stupid rules.

  • Jeremy White, Founder of CodeWeavers
    Source: bsdtalk
    Added: 03 May 2008
    Tags: bsdtalk, interview, freebsd, codeweavers, crossover, jeremy white
    Ogg version (16 minutes), MP3 version (7 Mb, 16 minutes)
    Interview with Jeremy White, Founder of CodeWeavers. We talk about the recent availability of an experimental build of Crossover Games for BSD.

April 2008

March 2008

February 2008

January 2008

  • Dru Lavigne
    Source: bsdtalk
    Added: 31 January 2008
    Tags: bsdtalk, interview, dru lavigne, the best of freebsd basics
    Ogg version (14 minutes), MP3 version (7 Mb, 14 minutes)

    Interview with Dru Lavigne. We talk about her new book "The Best of FreeBSD Basics" and also get an update on some other projects including BSD Certification.

    See the following links for more information:

    • https://register.bsdcertification.org/register/get-a-bsdcg-id
    • http://reedmedia.net/books/freebsd-basics
    • http://www.osbr.ca

  • Central Syslog
    Source: bsdtalk
    Added: 25 January 2008
    Tags: bsdtalk, syslog
    Ogg version (7 minutes), MP3 version (3 Mb, 7 minutes)
    Setting up a central syslog server.

    • If you are concerned about the security of your logs, use a dedicated machine and lock it down.
    • Keep clocks in sync.
    • You may need to change log rotation schedule in /etc/newsyslog.conf. You can rotate based in size and/or time. This can be as much a policy decision as a hardware decision.
    • On central log host, change syslogd flags to listen to network. Each BSD does this differently, so check the man pages. Also, check out the -n flag for busy environments.
    • Make sure host firewall allows syslog traffic through.
    • Be careful to limit syslog traffic to just the trusted network or hosts. FreeBSD man page refers to syslogd as a "remote disk filling service".
    • For heavy logging environments, it is important to have a dedicated network. A down syslogd server can create a lot of "ARP who-has" broadcasts.
    • Most network devices such as printers and commercial firewalls support sending to a central syslog server. Take a look at "Snare" for Windows hosts.
    • To send messages from a Unix host, specify the host name prepended with @ instead of a file for logging in /etc/syslog.conf. For example, change /var/log/xferlog to @loghost.mydomain.biz. You can also copy and edit the line to have it log to both a local file and a remote host.

  • SSARES
    Source: New York City *BSD User Group
    Added: 11 January 2008
    Tags: nycbug, presentation, ipv6, gene cronk
    Paper (443 Kb, 10 pages), MP3 version (7 Mb, 67 minutes)

    SSARES: Secure Searchable Automated Remote Email Storage - A usable, secure email system on a remote untrusted server

    The increasing centralization of networked services places user data at considerable risk. For example, many users store email on remote servers rather than on their local disk. Doing so allows users to gain the benefit of regular backups and remote access, but it also places a great deal of unwarranted trust in the server. Since most email is stored in plaintext, a compromise of the server implies the loss of confidentiality and integrity of the email stored therein. Although users could employ an end-to-end encryption scheme (e.g., PGP), such measures are not widely adopted, require action on the sender side, only provide partial protection (the email headers remain in the clear), and prevent the users from performing some common operations, such as server-side search.

    To address this problem, we present Secure Searchable Automated Remote Email Storage (SSARES), a novel system that offers a practical approach to both securing remotely stored email and allowing privacy-preserving search of that email collection. Our solution encrypts email (the headers, body, and attachments) as it arrives on the server using public-key encryption. SSARES uses a combination of Identity Based Encryption and Bloom Filters to create a searchable index. This index reveals little information about search keywords and queries, even against adversaries that compromise the server. SSARES remains largely transparent to both the sender and recipient. However, the system also incurs significant costs, primarily in terms of expanded storage requirements. We view our work as a starting point toward creating privacy-friendly hosted services.

    Angelos Keromytis is an Associate Professor with the Department of Computer Science at Columbia University, and director of the Network Security Laboratory. He received his B.Sc. in Computer Science from the University of Crete, Greece, and his M.Sc. and Ph.D. from the Computer and Information Science (CIS) Department, University of Pennsylvania. He is the author and co-author of more than 100 papers on refereed conferences and journals, and has served on over 40 conference program committees. He is an associate editor of the ACM Transactions on Information and Systems Security (TISSEC). He recently co-authored a book on using graphics cards for security, and is a co-founder of StackSafe Inc. His current research interests revolve around systems and network security, and cryptography.

  • Open Community Camp with Marten Vijn
    Source: bsdtalk
    Added: 08 January 2008
    Tags: bsdtalk, interview, opencommunitycamp, marten vijn
    Ogg version (13 minutes), MP3 version (6 Mb, 13 minutes)
    Interview with Marten Vijn about www.OpenCommunityCamp.org.

December 2007

November 2007

  • Joerg Sonnenberger
    Source: bsdtalk
    Added: 18 November 2007
    Tags: bsdtalk, interview, eurobsdcon, eurobsdcon2007, michael dexter, joerg sonnenberger
    Ogg version (17 minutes), MP3 version (8 Mb, 17 minutes)
    Michael Dexter sent me an interview he recorded on behalf of BSDTalk with Joerg Sonnenberger at EuroBSDCon 2007.

  • OpenBSD 4.2 Release Song - "100001 1010101"
    Source: OpenBSD
    Added: 02 November 2007
    Tags: openbsd, artwork
    Ogg version (6.4 Mb, 4 minutes 4- seconds), MP3 version (4.0 Mb, 4 minutes 40 seconds)

    Those of us who work on OpenBSD are often asked why we do what we do. This song's lyrics express the core motivations and goals which have remained unchanged over the years - secure, free, reliable software, that can be shared with anyone. Many other projects purport to share these same goals, and love to wrap themselves in a banner of "Open Source" and "Free Software". Given how many projects there are one would think it might be easy to stick to those goals, but it doesn't seem to work out that way. A variety of desires drag many projects away from the ideals very quickly.

    Much of any operating system's usability depends on device support, and there are some very tempting alternative ways to support devices available to those who will surrender their moral code. A project could compromise by entering into NDA agreements with vendors, or including binary objects in the operating system for which no source code exists, or tying their users down with contract terms hidden inside copyright notices. All of these choices surrender some subset of the ideals, and we simply will not do this. Sure, we care about getting devices working, but not at the expense of our original goals.

    Of course since "free to share with anyone" is part of our goals, we've been at the forefront of many licensing and NDA issues, resulting in a good number of successes. This success had led to much recognition for the advancement of Free Software causes, but has also led to other issues.

    We fully admit that some BSD licensed software has been taken and used by many commercial entities, but contributions come back more often than people seem to know, and when they do, they're always still properly attributed to the original authors, and given back in the same spirit that they were given in the first place.

    That's the best we can expect from companies. After all, we make our stuff so free so that everyone can benefit -- it remains a core goal; we really have not strayed at all in 10 years. But we can expect more from projects who talk about sharing -- such as the various Linux projects.

    Now rather than seeing us as friends who can cooperatively improve all codebases, we are seen as foes who oppose the GPL. The participants of "the race" are being manipulated by the FSF and their legal arm, the SFLC, for the FSF's aims, rather than the goal of getting good source into Linux (and all other code bases). We don't want this to come off as some conspiracy theory, but we simply urge those developers caution -- they should ensure that the path they are being shown by those who have positioned themselves as leaders is still true. Run for yourself, not for their agenda.

    The Race is there to be run, for ourselves, not for others. We do what we do to run our own race, and finish it the best we can. We don't rush off at every distraction, or worry how this will affect our image. We are here to have fun doing right.

October 2007

September 2007

August 2007

July 2007

  • William "whurley" Hurley, Chief Architect of Open Source Strategy at BMC Software, Inc.
    Source: bsdtalk
    Added: 31 July 2007
    Tags: bsdtalk, interview, bmc software, whurley, william hurley
    Ogg version (28 minutes), MP3 version (14 Mb, 28 minutes)
    Interview with William "whurley" Hurley, Chief Architect of Open Source Strategy at BMC Software, Inc. We talk about the BMC Developer Network.

  • Embedding FreeBSD with M. Warner Losh
    Source: bsdtalk
    Added: 27 July 2007
    Tags: bsdtalk, interview, embedding freebsd, m warner losh
    Ogg version (16 minutes), MP3 version (8 Mb, 16 minutes)
    Interview with M. Warner Losh about embedding FreeBSD.

  • Fast IPSec with George Neville-Neil
    Source: bsdtalk
    Added: 16 July 2007
    Tags: bsdtalk, interview, ipsec, george neville-neil
    Ogg version (14 minutes), MP3 version (7 Mb, 14 minutes)
    Interview with George Neville-Neil about Fast IPSec.

  • BSD Hacker Isaac "Ike" Levy
    Source: bsdtalk
    Added: 16 July 2007
    Tags: bsdtalk, interview, nycbug, isaac levy
    Ogg version (26 minutes), MP3 version (13 Mb, 26 minutes)
    Interview with BSD Hacker Isaac "Ike" Levy. To hear more of Ike and other NYCBUG audio, visit http://www.fetissov.org/public/nycbug/

  • Isaac `Ike` Levy on the Real Unix Tradition
    Source: New York City *BSD User Group
    Added: 08 July 2007
    Tags: nycbug, presentation, unix tradition, isaac levy
    MP3 version (10Mb)

    "The Real Unix Tradition"

    UNIX hackers, all standing on the shoulders of giants.

    "...the number of UNIX installations has grown to 10, with more expected..." - Dennis Ritchie and Ken Thompson, June 1972

    "Well, it was all Open Source, before anybody really called it that". - Brian Redman, 2003

    UNIX is the oldest active and growing computing culture alive today. From it`s humble roots in the back room at Bell Laboratories, to today`s global internet infrastructure- UNIX has consistently been at the core of major advances in computing. Today, the BSD legacy is the most direct continuation of the most successful principles in UNIX, and continues to lead major advances in computing.

    Why? What`s so great about UNIX?

    This lecture aims to prove that UNIX history is surprisingly useful (and fun)- for developers, sysadmins, and anyone working with BSD systems.

    about the speaker

    Isaac Levy, (ike) is a freelance BSD hadker based in NYC. He runs Diversaform Inc. as an engine to make his hacking feed itself, (and ike). Diversaform specializes in *BSD based solutions, providing `IT special weapons and tatics` for various sized business clients, as well as running a small high-availability datacenter operation from lower Manhattan. With regard to FreeBSD jail(8), ike was a partner in the first jail (8)-based web hosting ISP in America, iMeme, and has been developing internet applications in and out of jails since 1999. Isaac is a proud member of NYC*BUG (the New York City *BSD Users Group), and a long time member of LESMUUG, (the Lower East Side Mac Unix Users Group).

  • Playing with IPv6
    Source: bsdtalk
    Added: 06 July 2007
    Tags: bsdtalk, ipv6
    Ogg version (15 minutes), MP3 version (8 Mb, 15 minutes)
    I ramble on about how I have been experimenting with IPv6. For more details, see http://cisx1.uma.maine.edu/~wbackman/cis341/resources/ipv6-test-lab.html.

  • Google Tech Talks June 20, 2007: How the FreeBSD Project Works
    Source: Google Tech Talks
    Added: 04 July 2007
    Tags: google, presentation, freebsd, freebsd project, robert watson
    AVI (321 Mb, 51 minutes)

    The FreeBSD Project is one of the oldest and most successful open source operating system ... all projects, seeing wide deployment across the IT industry. From the root name servers, to top tier ISPs, to core router operating systems, to firewalls, to embedded appliances, you can't use a networked computer for ten minutes without using FreeBSD dozens of times. Part of FreeBSD's reputation for quality and reliability comes from the nature of its development organization--driven by a hundreds of highly skilled volunteers, from high school students to university professors. And unlike most open source projects, the FreeBSD Project has developers who have been working on the same source base for over twenty years. But how does this organization work? Who pays the bandwidth bills, runs the web servers, writes the documentation, writes the code, and calls the shots? And how can developers in a dozen time zones reach agreement on the time of day, let alone a kernel architecture? This presentation will attempt to provide, in 45 minutes, a brief if entertaining snapshot into what makes FreeBSD run.

    Speaker: Robert Watson Robert Watson is a researcher at the University of Cambridge Computer Laboratory investinging operating system and network security. Prior to joining the Computer Laboratory to work on a PhD, he was a Senior Principal Scientist at McAfee Research, now SPARTA ISSO, a leading security research and development organization, where he directed government and commercial research contracts for customers that include DARPA, the US Navy, and Apple Computer. His research interests include operating system security, network stack structure and performance, and windowing system structure. He is also a member of the FreeBSD Core Team and president of the FreeBSD Foundation.

June 2007

  • Sidsel Jensen from EuroBSDCon
    Source: bsdtalk
    Added: 25 June 2007
    Tags: bsdtalk, interview, eurobsdcon, eurobsdcon2007, sidsel jensen
    Ogg version (9 minutes), MP3 version (5 Mb, 9 minutes)
    Interview with Sidsel Jensen from www.eurobsdcon.org.

  • One Time Passwords
    Source: bsdtalk
    Added: 14 June 2007
    Tags: bsdtalk, security, one time passwords
    Ogg version (6 minutes), MP3 version (4 Mb, 6 minutes)

    • Important when you don't trust the computer you are using, such as a library computer or internet kiosk.
    • Available by default in Free/Net/Open BSD.
    • FreeBSD uses OPIE, Net/Open use S/Key.
    • One time passwords are based on your pass phrase, a non-repeating sequence number, and a seed.
    • Initial setup should be done directly on the server.
    • "skeyinit" for Net/Open, "opiepasswd -c" for FreeBSD.
    • Enter a pass phrase that is not your regular account password.
    • Find your current sequence number and seed with "opieinfo" or "skeyinfo", for example: "497 pc5246".
    • Generate a list of the next 10 passwords and write them down, using "opiekey -n 10 497 pc5246" or "skey -n 10 497 pc5246".
    • When you log in from a remote machine that might have a keystroke logger, you can now use a one time password instead of your regular password.
    • For OpenBSD, log in as account:skey, for example "bob:skey", which will cause the system to present the s/key challenge.
    • For NetBSD, the system will always present you with the s/key challenge if it is configured for your account, although you can still use your regular password.
    • FreeBSD by default will force you to use a one time password if it is configured for your account.
    • If you want both OPIE and password authentication, FreeBSD allows you to list trusted networks or hosts in /etc/opieaccess.
    • Instead of carrying a list of passwords around, you can use s/key generators on a portable device that you trust, such as a palm pilot.
    • For more info, check the man pages.

  • Steven Kreuzer on Denial of Service Mitigation Techniques
    Source: New York City *BSD User Group
    Added: 08 June 2007
    Tags: nycbug, presentation, denialofservice, steven kreuzer
    MP3 version (10Mb)

    Protecting your servers, workstations and networks can only go so far. Attacks which consume your available Internet-facing bandwidth, or overpower your CPU, can still take you offline. His presentation will discuss techniques for mitigating the effects of such attacks on servers designed to provide network intensive services such as HTTP or routing.

    about the speaker

    Steven Kreuzer is currently employed by Right Media as a Systems Administrator focusing on building and managing high transaction infrastructures around the globe. He has been working with Open Source technologies since as long as he can remember, starting out with a 486 salvaged from a dumpster behind his neighborhood computer store. In his spare time he enjoys doing things with technology that have absolutely no redeeming social value.

  • Rick Macklem and NFSv4
    Source: bsdtalk
    Added: 07 June 2007
    Tags: bsdtalk, interview, nfs, rick macklem
    Ogg version (13 minutes), MP3 version (6 Mb, 13 minutes)
    Interview with Rick Macklem about his work with NFSv4. More information at http://snowhite.cis.uoguelph.ca/nfsv4/.

  • Jun-ichiro "itojun" Itoh Hagino
    Source: bsdtalk
    Added: 02 June 2007
    Tags: bsdtalk, interview, kame, itojun, jun-ichiro itoh hagino
    Ogg version (10 minutes), MP3 version (4 Mb, 10 minutes)
    Interview with KAME project core researcher Jun-ichiro "itojun" Itoh Hagino.

May 2007

April 2007

March 2007

February 2007