DOCSLIB.ORG

Development Tools on Freebsd

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

FOR NOVICE AND ADVANCED USERS Development tools on FreeBSD Experimenting with XEN Model View Whatever Introduction to origins NetBSD 10 Things Your CIO Should Know About TrueNAS Vol. 09 No. 11 ISSUE 75 1898-9144 1 2 EDITORS’ WORD Dear Readers, I know that many of you don’t celebrate Christmas, so I will not wish you Merry Christmas. But I hope that for all of you, December and the end of the year will be a wonderful time, no matter where you come from, which language you speak or what your beliefs are. I also know that you have been waiting for more FreeBSD re- Editor in Chief: lated articles. So, here they are. Marta Ziemianowicz Great, as always, David Carlier will introduce you to Develop- ment Tools on FreeBSD. If you would like to switch from Linux [email protected] to FreeBSD, this article is definitely for you. Contributing: The next article is an introduction to NetBSD. Siju Oommen David Carlier, Siju Oommen, Damian Czernous, Michael Boelem, Valerie George wrote a guide for you that is another must read for all Heatley, Mark VonFange, Roger Pau Monne and Rob Somerville. beginners, but I hope that professionals and old timers will like it as well. Top Betatesters & Proofreaders: After BSD, it is time for something new. Say “Hi” to Damian Annie Zhang, Denise Ebery, Eric Geissinger, Luca Ferrari, Imad Soltani, Czernous and the origins of Model View Whatever. Not really Olaoluwa Omokanwaye, Radjis Mahangoe, Mani Kanth, Ben Milman, Mark VonFange and David Carlier related to Open Source? Maybe it will be useful for some of you anyway and will broaden your horizons. Special Thanks: Roger Pau Monné will introduce you to Xen and how to have Annie Zhang a little fun with it. If you would like to know how to prepare the host, install Xen and create Guests, dive in right now! Denise Ebery Hope you will enjoy our interviews with Valerie Heatley and DTP: Michael Boelem. Valerie is a super nice Recruiter in Speer- Marta Ziemianowicz head - The Global Leader in DevOps Recruitment. Read what is hot on DevOps recruitment market at the moment. Michael Senior Consultant/Publisher: is a young entrepreneur, who established CISOfy. The com- pany focuses on auditing, hardening and compliance of infor- Paweł Marciniak mation security of Linux and Unix systems. Linux enthusiasts, “security is not a one-time event, but a continuous stream of [email protected] small improvements (and adjustments).” CEO: The last two pieces are our columns: Joanna Kretowicz Mark VonFange from iXsystems will tell you 10 Things Your [email protected] CIO Should Know About TrueNAS. Have you heard about all of them? Publisher: And last crumb, our great Rob Somerville and his thoughts Hakin9 Media SK 02-676 Warsaw, Poland Postepu 17D Poland worldwide publishing [email protected] www.bsdmag.org about the recent attacks in Paris and evolution of the IT world. Has something gone wrong? Hakin9 Media SK is looking for partners from all over the world. If you are interested in cooperation with us, please contact us via e-mail: Enjoy your reading! And have a beautiful December, with [email protected]. snow or rain, sun or clouds, let’s spend it with our families, All trademarks presented in the magazine were used only for informative communities and the dearest ones. Don’t forget to share this purposes. All rights to trademarks presented in the magazine are reserved issue with your favorite open source community ;) by the companies which own them. Marta & BSD Team 3 CONTENTS News XEN BSD World Monthly News 5 Experimenting with Xen 27 by Marta Ziemianowicz by Roger Pau Monné This column presents the latest news coverage of Xen is a hypervisor using a microkernel design, pro- breaking news events, products releases and trend- viding services that allow multiple computer operat- ing topics of the BSD new stories. ing systems to execute on the same computer hard- ware concurrently. The FreeBSD Corner Interview Development tools on FreeBSD 12 Interview with Michael Boelen by David Carlier from CISOfy 41 If you're usually programming on Linux and you are considering a potential switch to FreeBSD, this arti- by Marta Ziemianowicz & Marta Strzelec cle will give you an overview of the possibilities… Interview with Valerie Heatley NetBSD from Speerhead 47 NetBSD Introduction 17 by Marta Ziemianowicz & Marta Sienicka by Siju Oommen George TrueNAS Street The objective of this article is to introduce the 10 Things Your CIO Should Know NetBSD operating system to people who are new to BSDs. The NetBSD project began as a result of frus- About TrueNAS 52 tration within the 386BSD developer community with the pace and direction of the operating system's de- by Mark VonFange velopment. We could write volumes about all the benefits of Tru- GUI eNAS and why it should be in your workplace. For the sake of brevity, however, we’ve narrowed it down to ten things your CIO should know about TrueNAS Model View Whatever - origins 23 before deciding on a storage solution. by Damian Czernous Rob’s Column 55 This is the first paper of the series about evolution of GUI related strategies shapely named Model View by Rob Somerville Whatever. As an engineer, I find myself confident in the software engineering field due to the passion for Presidential hopeful Hillary Clinton has joined an context (history). This series of short papers, divided ever increasing vocal group to argue for the weaken- by major influences that happened through tens of ing of data encryption. In light of the horrific and inhu- years, delivers context and sometimes organises the man terrorist attacks in Paris this month, what are mess around these little letters: M, V and W. the implications of such ideology but more impor- tantly how, as technologists, should we address such a moral quagmire? 4 NEWS Open source OpenWRT router has automatic updates CZ.NIC, a non- profit organiza- tion that runs the .CZ top level domain of the Czech Re- public, re- leased its first open source hardware and software router design called Turris in 2014, offering systems to interested hackers on an invitation-only basis. Now, it is ex- panding to a larger base via Indiegogo with a new Turris Omnia design touted for its high performance, security, automatic updates, and multiple servers. The Omnia de- s i g n m o v e s f r o m t h e 1.2GHz, PowerPC- based Freescale P2020 that powers the cur- rent Turris de- sign to a 1.6GHz dual-core ARM SoC: Marvell’s Armada-385. The Armada-385 is a member of Mar- vell’s recently announced, 28nm-fabricated Armada 38x family of networking SoCs. The SoC is accom- panied here with a cryptography chip that offers se- cure random number generation. http://linuxgizmos.com/open-source-openwrt-router- has-automatic-updates/ 5 NEWS PoWiFi: Now Your Router Will Transmit Both Internet and Energy This new Wi-Fi technology is being hailed as one of the best technological innovations happening this year. The Power Over WiFi(PoWiFi) system uses a WiFi router and its WiFi signals to power the de- vices. According to the team of engineers at the University of Washington, who are behind the PoWiFi, for the first time, it’s possible to use WiFi devices to power the sensors and other devices. The Internet of Things is becoming a much bigger phenomenon with each passing day, and this PoWiFi tech could make IoT more relevant in the upcoming future years. Using PoWiFi, one could harvest the energy in WiFi signals and meet the needs of low-power sensors in devices like cameras, wearables, etc. Microsoft makes Raspberry Pi its preferred IoT dev board Chipzilla's Raspberry Pi-like Galileo was anointed as able- to-run-Windows in August 2014, courtesy of the 1.0.2 firm- ware update for the Gen1 device. In the same month, Intel launched the Gen2 board (which got its stripped-down Win- dows 8 version in October 2014). Microsoft was also handing out Galileo devices free to de- velopers joining its Internet of Things program. Alas, there's no weight-loss program good enough to fit Windows 10 IoT Core into the Galileo, so Redmond has set November 30 as end-of-life for the development boards. Raspberry Pi is the officially designated migration target: "Wiring support is now available on Win- dows 10 IoT Core running on Raspberry Pi 2. This allows you to migrate your existing Galileo pro- jects to Windows 10 IoT Core", the company notes. http://www.theregister.co.uk/2015/11/19/redmond_expels_galileo/ 6 The Linux 4.4 Kernel Linux 4.4 is currently around 20.8 million lines or an in- crease of about 200 thousand lines of code/documentation and a few hundred new files after Linus accepted around 12,000 commits for this merge window. Graphics - AMD Stoney support.. - There are numerous AMDGPU additions for those with an AMD Carrizo, Tonga, or Fiji graphics processor. That in- cludes enabling the AMDGPU scheduler by default, new AtomBIOS opcodes, and various fixes. - There's a Raspberry Pi KMS driver that's landed. Unfortunately for Linux 4.4, this Raspberry Pi kernel graphics driver is just for kernel mode-setting and doesn't yet handle 3D hardware accel- eration or power management. - It has the VirtIO VirGL DRM code! This is used in conjunction with the VirtIO VirGL code in Mesa's Gallium3D along with changes in QEMU 2.5 for providing OpenGL acceleration support to guest virtual machines over QEMU+KVM with VirtIO.
Recommended publications
  • Freenas® 11.0 User Guide

    Freenas® 11.0 User Guide

    FreeNAS® 11.0 User Guide June 2017 Edition FreeNAS® IS © 2011-2017 iXsystems FreeNAS® AND THE FreeNAS® LOGO ARE REGISTERED TRADEMARKS OF iXsystems FreeBSD® IS A REGISTERED TRADEMARK OF THE FreeBSD Foundation WRITTEN BY USERS OF THE FreeNAS® network-attached STORAGE OPERATING system. VERSION 11.0 CopYRIGHT © 2011-2017 iXsystems (https://www.ixsystems.com/) CONTENTS WELCOME....................................................1 TYPOGRAPHIC Conventions...........................................2 1 INTRODUCTION 3 1.1 NeW FeaturES IN 11.0..........................................3 1.2 HarDWARE Recommendations.....................................4 1.2.1 RAM...............................................5 1.2.2 The OperATING System DeVICE.................................5 1.2.3 StorAGE Disks AND ContrOLLERS.................................6 1.2.4 Network INTERFACES.......................................7 1.3 Getting Started WITH ZFS........................................8 2 INSTALLING AND UpgrADING 9 2.1 Getting FreeNAS® ............................................9 2.2 PrEPARING THE Media.......................................... 10 2.2.1 On FreeBSD OR Linux...................................... 10 2.2.2 On WindoWS.......................................... 11 2.2.3 On OS X............................................. 11 2.3 Performing THE INSTALLATION....................................... 12 2.4 INSTALLATION TROUBLESHOOTING...................................... 18 2.5 UpgrADING................................................ 19 2.5.1 Caveats:............................................
  • The Role of “Roles” in Use Case Diagrams

    The Role of “Roles” in Use Case Diagrams

    Lecture Notes in Computer Science 1 The Role of “Roles” in Use Case Diagrams Alain Wegmann1, Guy Genilloud1 1 Institute for computer Communication and Application (ICA) Swiss Federal Institute of Technology (EPFL) CH-1015 Lausanne, Switzerland icawww.epfl.ch {alain.wegmann, guy.genilloud}@epfl.ch Abstract: Use cases are the modeling technique of UML for formalizing the functional requirements placed on systems. This technique has limitations in modeling the context of a system, in relating systems involved in a same busi- ness process, in reusing use cases, and in specifying various constraints such as execution constraints between use case occurrences. These limitations can be overcome to some extent by the realization of multiple diagrams of various types, but with unclear relationships between them. Thus, the specification ac- tivity becomes complex and error prone. In this paper, we show how to over- come the limitations of use cases by making the roles of actors explicit. Interest- ingly, our contributions not only make UML a more expressive specification language, they also make it simpler to use and more consistent. 1 Introduction The Unified Modeling Language (UML), standardized by the Object Management Group (OMG) in 1996, aims at integrating the concepts and notations used in the most important software engineering methods. UML is today widely used by the software development community at large. While the bulk of the integration of the concepts is completed, there are still improvements to be made in their consistency. Such im- provements could increase the expressive power of UML while reducing its complex- ity. System design frequently starts with business modeling, i.e.
  • BSD Magazine

    BSD Magazine

    FREENAS MINI FREENAS STORAGE APPLIANCE CERTIFIED IT SAVES YOUR LIFE. STORAGE HOW IMPORTANT IS YOUR DATA? With over six million downloads, As one of the leaders in the storage industry, you FreeNAS is undisputedly the most know that you’re getting the best combination of hardware designed for optimal performance Years of family photos. Your entire music popular storage operating system and movie collection. Office documents with FreeNAS. Contact us today for a FREE Risk in the world. you’ve put hours of work into. Backups for Elimination Consultation with one of our FreeNAS experts. Remember, every purchase directly supports every computer you own. We ask again, how Sure, you could build your own FreeNAS system: the FreeNAS project so we can continue adding important is your data? research every hardware option, order all the features and improvements to the software for years parts, wait for everything to ship and arrive, vent at to come. And really - why would you buy a FreeNAS customer service because it hasn’t, and finally build it server from anyone else? NOW IMAGINE LOSING IT ALL yourself while hoping everything fits - only to install the software and discover that the system you spent Losing one bit - that’s all it takes. One single bit, and days agonizing over isn’t even compatible. Or... your file is gone. The worst part? You won’t know until you MAKE IT EASY ON YOURSELF absolutely need that file again. Example of one-bit corruption As the sponsors and lead developers of the FreeNAS project, iXsystems has combined over 20 years of THE SOLUTION hardware experience with our FreeNAS expertise to The Mini boasts these state-of-the- The FreeNAS Mini has emerged as the clear choice to bring you FreeNAS Certified Storage.We make it art features: save your digital life.
  • Building a Scalable Index and a Web Search Engine for Music on the Internet Using Open Source Software

    Building a Scalable Index and a Web Search Engine for Music on the Internet Using Open Source Software

    Department of Information Science and Technology Building a Scalable Index and a Web Search Engine for Music on the Internet using Open Source software André Parreira Ricardo Thesis submitted in partial fulfillment of the requirements for the degree of Master in Computer Science and Business Management Advisor: Professor Carlos Serrão, Assistant Professor, ISCTE-IUL September, 2010 Acknowledgments I should say that I feel grateful for doing a thesis linked to music, an art which I love and esteem so much. Therefore, I would like to take a moment to thank all the persons who made my accomplishment possible and hence this is also part of their deed too. To my family, first for having instigated in me the curiosity to read, to know, to think and go further. And secondly for allowing me to continue my studies, providing the environment and the financial means to make it possible. To my classmate André Guerreiro, I would like to thank the invaluable brainstorming, the patience and the help through our college years. To my friend Isabel Silva, who gave me a precious help in the final revision of this document. Everyone in ADETTI-IUL for the time and the attention they gave me. Especially the people over Caixa Mágica, because I truly value the expertise transmitted, which was useful to my thesis and I am sure will also help me during my professional course. To my teacher and MSc. advisor, Professor Carlos Serrão, for embracing my will to master in this area and for being always available to help me when I needed some advice.
  • Ati Driver Freebsd

    Ati Driver Freebsd

    Ati driver freebsd Hey, I`m new to teh the bsd *BSD world and just installed Freebsd FreeBSD. Only thing missing is my video driver. ATI Radeon X How to Solved - Switch between ATI and VESA drivers? If you want to automatically load a video driver at boot time, we recommend to do it from /etc/:Radeon​: ​ It allows the use of newer xfvideo-ati drivers and AMD GPUs. This project started in January Initial radeon code comes from Linux. EndSection DESCRIPTION radeon is an Xorg driver for ATI/AMD RADEON-based video cards with the following features: o Full support for 8-, , and. This package contains the xfvideo-ati driver. xdrivers/drm-kmod: Port for the DRM kernel drivers for FreeBSD This port. If I boot X11 with no or with ati driver, the system stops responding, although cursor continues to follow mouse movements. (I suppose. To all those concerned, I have read that FreeBSD would be supported by the latest graphic card drivers, which was also confirmed by. I bought an expensive ATI card when they announced they'll go Note that AMD doesn't provide a driver for FreeBSD, so you'll be using the. We now know for sure that FreeBSD will ship with a kernel mode-setting driver for supporting open-source AMD Radeon graphics with its. AMD tech support has allegedly confirmed that Catalyst is being ported to FreeBSD. A Phoronix reader pointed out this thread. I am not sure that FreeBSD will fully support this card. The Xorg version for FreeBSD is and the ATI driver used is version The reason is, AMD/ATI doesn't support FreeBSD, and you have to resort to the sucky open source drivers.
  • Linux Security: What You Need to Know

    Linux Security: What You Need to Know

    Linux Security: What you need to know Dr. James Stanger Chief Technology Evangelist CompTIA Your presenter . James Stanger, PhD Chief Technology Evangelist - CompTIA Security+, Network+, MCSE, LPI Linux, Symantec STA Responsible for CompTIA’s cerGficaGons and conGnuing educaGon • Security analyGcs • Risk management • PenetraGon tesGng, risk assessment, and intrusion detecon • Linux and open source Twier: @jamesstanger • Network administraGon • VirtualizaGon CompTIA hub: • Web technologies hps://Gnyurl.com/y94u3v7j • CerGficaGon development • Award-winning author and instructor Poll quesGon(s) 1. What animal is the Linux mascot? 2. What is the Linux mascot’s name? 3. How did this mascot get chosen, anyway? Why Linux is important to security? Linux is table stakes for security • You’ll be securing Linux-based systems – Web servers and databases – Cloud and virtualizaon • Nearly 1 in 3 Azure virtual machines are Linux • Majority of cloud services use Linux • You will use a Linux system to perform audits – End points (e.g., IoT, mobile devices, ICS) – Many tools available – Flexibility, scalability, and cost • Used as foundaonal components for major business and security soluGons by companies worldwide Most open source security – Fortune 500 tools are built naGvely in Linux – SMB Plaorms you’ll be asked to secure • Content management systems – Wordpress – SharePoint (has other uses) • Web servers • Databases • Network infrastructure – Firewalls, routers and VPN servers – Edge devices (e.g., micro datacenters) – Mobile – DNS especially • End
  • Drukkar P66 Android-X86 4.4 RC P67 Hotshots P68 Rcssmin P68 Gipfel P69 Lynx P69 Flpsed P70 Lynis P68 Nightmaretris P70 Zatacka P71

    Drukkar P66 Android-X86 4.4 RC P67 Hotshots P68 Rcssmin P68 Gipfel P69 Lynx P69 Flpsed P70 Lynis P68 Nightmaretris P70 Zatacka P71

    FOSSPICKS Drukkar p66 Android-x86 4.4 RC p67 HotShots p68 rCSSmin p68 Gipfel p69 Lynx p69 Flpsed p70 Lynis p68 NightmareTris p70 Zatacka p71 Sparkling gems and new releases from the world of FOSSpicks Free and Open Source Software Mike Saunders has spent a decade mining the internet for open source treasures. Here’s the result of his latest haul… Lightweight blog platform Drukkar 2.0 http://drukkar.sourceforge.net ituation: you want to set up entries as simple XML files, and is your own blog. Options: a designed with minimum bandwidth Smillion and one competing overheads, so the “content should blog platforms, each one trying to account for most of your web be more feature-rich, flashy and traffic” as the developer puts it. Web 4.0 than the last. End result: you get tired of trying to work out Nice and simple what’s right for you, give up, and go To install Drukkar, extract its .zip to the pub instead. file directly into a location on your Sounds familiar? Most of us web server (note that it won’t create don’t need whizz-bang WordPress a subdirectory during extraction). installations with all the trimmings Then edit config.xml and set for our day-to-day musings, and the base_url and base_location Drukkar does a splendid job with settings to match your installation minimal requirements. It doesn’t path. Finally, make sure that the need a database or special Apache entries, files and cache directories Drukkar’s default theme, “flat”, is clean and simple. To change the modules or anything like that – its are writable by your web server text on the right, edit inc/sidebar.php.
  • Why Did We Choose Freebsd?

    Why Did We Choose Freebsd?

    Why Did We Choose FreeBSD? Index Why FreeBSD in General? Why FreeBSD Rather than Linux? Why FreeBSD Rather than Windows? Why Did we Choose FreeBSD in General? We are using FreeBSD version 6.1. Here are some more specific features which make it appropriate for use in an ISP environment: Very stable, especially under load as shown by long-term use in large service providers. FreeBSD is a community-supported project which you can be confident is not going to 'go commercial' or start charging any license fees. A single source tree which contains both the kernel and all the rest of the code needed to build a complete base system. Contrast with Linux that has one kernel but hundreds of distributions to choose from, and which may come and go over time. Scalability features as standard: e.g. pwd.db (indexed password database), which give you much better performance and scales well for very large sites. Superior TCP/IP stack that responds well to extremely heavy load. Multiple firewall packages built in to the base system (IPF, IPFW, PF). High-end debugging and tracing tools, including the recently announced port of the Sun Dynamic Tracing tool, DTrace, to FreeBSD. Ability to gather fine-grained statistics on system performance using many included utilities like systat, gstat, iostat, di, swapinfo, disklabel, etc. Items such as software RAID are supported using multiple utilities (ata, ccd. vinum, geom). RAID-1 using GEOM Mirror (see gmirror) supports identical disk sets, or identical disk slieces. Take a look at the most stable web sites according to NetCraft (http://news.netcraft.com/archives/2006/06/06/six_hosting_companies_most_reliable_hoster_in_may.html).
  • Truenas® 11.3-U5 User Guide

    Truenas® 11.3-U5 User Guide

    TrueNAS® 11.3-U5 User Guide Note: Starting with version 12.0, FreeNAS and TrueNAS are unifying (https://www.ixsystems.com/blog/freenas- truenas-unification/.) into “TrueNAS”. Documentation for TrueNAS 12.0 and later releases has been unified and moved to the TrueNAS Documentation Hub (https://www.truenas.com/docs/). Warning: To avoid the potential for data loss, iXsystems must be contacted before replacing a controller or upgrading to High Availability. Copyright iXsystems 2011-2020 TrueNAS® and the TrueNAS® logo are registered trademarks of iXsystems. CONTENTS Welcome .................................................... 8 Typographic Conventions ................................................ 9 1 Introduction 10 1.1 Contacting iXsystems ............................................... 10 1.2 Path and Name Lengths ............................................. 10 1.3 Using the Web Interface ............................................. 12 1.3.1 Tables and Columns ........................................... 12 1.3.2 Advanced Scheduler ........................................... 12 1.3.3 Schedule Calendar ............................................ 13 1.3.4 Changing TrueNAS® Settings ...................................... 13 1.3.5 Web Interface Troubleshooting ..................................... 14 1.3.6 Help Text ................................................. 14 1.3.7 Humanized Fields ............................................ 14 1.3.8 File Browser ................................................ 14 2 Initial Setup 15 2.1 Hardware
  • APPLYING MODEL-VIEW-CONTROLLER (MVC) in DESIGN and DEVELOPMENT of INFORMATION SYSTEMS an Example of Smart Assistive Script Breakdown in an E-Business Application

    APPLYING MODEL-VIEW-CONTROLLER (MVC) in DESIGN and DEVELOPMENT of INFORMATION SYSTEMS an Example of Smart Assistive Script Breakdown in an E-Business Application

    APPLYING MODEL-VIEW-CONTROLLER (MVC) IN DESIGN AND DEVELOPMENT OF INFORMATION SYSTEMS An Example of Smart Assistive Script Breakdown in an e-Business Application Andreas Holzinger, Karl Heinz Struggl Institute of Information Systems and Computer Media (IICM), TU Graz, Graz, Austria Matjaž Debevc Faculty of Electrical Engineering and Computer Science, University of Maribor, Maribor, Slovenia Keywords: Information Systems, Software Design Patterns, Model-view-controller (MVC), Script Breakdown, Film Production. Abstract: Information systems are supporting professionals in all areas of e-Business. In this paper we concentrate on our experiences in the design and development of information systems for the use in film production processes. Professionals working in this area are neither computer experts, nor interested in spending much time for information systems. Consequently, to provide a useful, useable and enjoyable application the system must be extremely suited to the requirements and demands of those professionals. One of the most important tasks at the beginning of a film production is to break down the movie script into its elements and aspects, and create a solid estimate of production costs based on the resulting breakdown data. Several film production software applications provide interfaces to support this task. However, most attempts suffer from numerous usability deficiencies. As a result, many film producers still use script printouts and textmarkers to highlight script elements, and transfer the data manually into their film management software. This paper presents a novel approach for unobtrusive and efficient script breakdown using a new way of breaking down text into its relevant elements. We demonstrate how the implementation of this interface benefits from employing the Model-View-Controller (MVC) as underlying software design paradigm in terms of both software development confidence and user satisfaction.
  • Hey Lynis, Audit This by Russ Mcree – ISSA Senior Member, Puget Sound (Seattle), USA Chapter

    Hey Lynis, Audit This by Russ Mcree – ISSA Senior Member, Puget Sound (Seattle), USA Chapter

    toolsmith Hey Lynis, Audit This By Russ McRee – ISSA Senior Member, Puget Sound (Seattle), USA Chapter Prerequisites/dependencies solution will include the existing Lynis Unix/Linux operating systems client that we’ll cover here, a management and reporting interface, as well as related plugins. Michael says they’re making great progress and each appy Holidays to all readers, the ISSA community, day brings them closer to an official first version. Specific to and infosec tool users everywhere. As part of De- the plugins, while a work in progress, they create specialized cember’s editorial theme for the ISSA Journal, Di- hooks via the client. As an example, imagine heuristics scan- Hsaster Recovery/Disaster Planning, I thought I’d try to con- ning with correlation at the central node to detect security in- nect tooling and tactics to said theme. I’m going to try and do trusions. Compliance checking for the likes of Basel II, GLBA, this more often so you don’t end up with a web application HIPAA, PCI DSS, and SOX is another likely plugin candidate. hacking tool as part of the forensics and analysis issue. I can The short-term road map consists of finishing the web inter- hear Thom (editor) and Joel (editorial advisory board chair) face, followed by the presenting and supporting documents. now: “Congratulations Russ, it only took you seven years to This will include documentation, checklists, control over- catch up with everyone else, you stubborn git.” views, and materials for system administrators, security pro- Better late than never I always say, so back to it.
  • Hodetector: the Hidden Objects Detection Based on Static Semantic Information Library Outside Virtual Machine 1393

    Hodetector: the Hidden Objects Detection Based on Static Semantic Information Library Outside Virtual Machine 1393

    HODetector: The Hidden Objects Detection Based on Static Semantic Information Library Outside Virtual Machine 1393 HODetector: The Hidden Objects Detection Based on Static Semantic Information Library Outside Virtual Machine YongGang Li1, 2, ChaoYuan Cui1, BingYu Sun1, WenBo Li3* 1 Institute of Intelligent Machine, Chinese Academy of Sciences, China 2 School of Information Science and Technology, University of Science and Technology of China, China 3 Institute of Technology Innovation, Chinese Academy of Sciences, China [email protected], {cycui, bysun, wbli}@iim.ac.cn Abstract objects for virtual machine security. For virtualization security, the traditional secure With the spread of malwares, the security of virtual tools detecting malwares are placed into the guest VM machine (VM) is suffering severe challenges recent years. (GVM) that may be injected by computer viruses. So, Rootkits and their variants can hide themselves and other it’s possible that the secure tool will be bypassed or kernel objects such as processes, files, and modules cheated. For example, a rootkit named f00lkit can making malicious activity hard to be detected. The bypass Chkrootkit and Rkhunter, the most popular anti- existed solutions are either coarse-grained, monitoring at malwares tools in Linux. Compared with the traditional virtual machine level, or non-universal, only supporting method, one mechanism called out-of-box [3] detecting specific operating system with specific modification. In malwares out of VM is a better way, because the this paper, we propose a fine-grained approach called secure tool is outside any span of malwares. Then HODetector based on static semantic information library another problem appears: semantic gap [4].