This page will list everything that is needed to create published versions of our documentation for sale. The current plan is update the Handbook in order to provide a PDF to FreeBSD Mall for a printed book edition, and to create Google Book and Kindle versions for supported e-readers with e-reader proceeds going directly to the Foundation. Once this pilot project is complete, the viability of creating other publications for sale (e.g. Porter's Handbook) can be discussed.

There is still a demand for a printed version of the handbook from customers of e.g. FreeBSD Mall. It was suggested that the Fourth Edition should cover FreeBSD 9.X releases, and future books 10.X, 11.X etc. The current Third Edition was published in 1993 and covers FreeBSD 4.X and 5.X only. Due to the current size of the Handbook (currently 1491 printed pages), it was recommended to change from a two volume printed edition to a three volume edition: 1) FreeBSD installation and basic system administration 2) FreeBSD as a server OS 3) FreeBSD as a desktop OS. But since PC-BSD is making such a good progress on the desktop side, we should not try to compete with them when our resources can be focused elsewhere. So we decided that we should focus on 1) FreeBSD installation and basic system administration 2) FreeBSD as a server OS only.

Repository branch

The book will be created in a separate branch in SVN in order not to disrupt the current handbook too much. A typical example for this is the removal of non-9.X content from the print edition while the online handbook still has relevant 8.X information in it. We'll try to merge improvements made in the print edition branch back into the online handbook and plan to do so after the book is released. If you want to help out, send us patches against the branch, not the online handbook. This will increase the chances that your patch gets committed sooner (note that this is not the only criteria, but an important one).

Rough schedule

- schema update, tagging, and figuring out what is needed by end of 2012 - mostly finished, see table below

- content updating till end of October - under way, please see the lists below and pick tasks to work on

- November for copy-edit and review by Editor

- New date: publish in time for end of the year 2013

Editorial Discussion

- published version should remove authors names from section and include in Acknowledgements (should this also be for online edition?)

- some sub-sections are unnecessarily deep; do we want to place a cap on levels and reorganize accordingly?

- regarding trademarks, should we adopt the policy of "first mention" in the Copyright section, then no longer needed in rest of Handbook?

- the use of bold needs to be compared to typographic conventions

- not including Appendix D reduces Handbook from 1491 to 954 pages

- all sections should begin with a Synopsis/Introduction; should this be a subsection or just the introductory material after the title of the section?

- all sections (where applicable) should be divided between a Quick Start and Advanced topics

- would be useful for each section to end with a Troubleshooting section that contains common errors and how to resolve them as well as links to additional resources

- titles need to be reviewed for proper capitalization--are our title capitalization rules recorded in FDP?

- need a cheatsheet of formatting stuff for writers: title rules, when to include manpage number, how to setup a section, rules on subsections, not having titles with no content other than more subsections, when to use index tags, adding tags for older versions that won't be in the book, rule for using acronyms (e.g. only first use is spelled out), format of hyphenated words, reword titles with "?", figure naming, an or a before N,

The results of the above discussion.

Table 1: What Needs to Happen

This is by no means a complete list. Add tasks as needed.



Estimated Completion Date

Create Table of Contents for each Publication (book)

Work through the current list of handbook PRs for available patches

End of August 2012

Review Handbook to remove stuff prior to 9.X


December 2012/January 2013

Complete Table 2 for each chapter

Update Screenshots

Update Glossary

Update indexterms for each chapter

Write Preface for each Publication

Add artwork to explain concepts (dru@ has access to an artist)

Commission Cover Art


3 weeks prior to publication

Convert to pdf (for Mall)

bcr@, with help from gabor@

Create Foundation accounts for Amazon and Google Books


1 week prior to publication

Convert to epub (using new XML DocBook XSLT)

bcr@, with help from gabor@

Convert HTML to Kindle format for Amazon


3 days prior to publication (for Amazon review)

Announce availability of publications

publishers, bloggers, doc committers for news entry on


- print edition can include a 2-sided FreeBSD DVD (32- and 64-bit)

- Introduction chapter should highlight FreeBSD's features and answer the question: Why FreeBSD?

Table 2: What is Missing

The following topics are not in the Handbook and may or may not be written in time for publication. As these are written, they need to be moved from Table 2 to their correct placement within Table 3.






pjd?, rwatson?

belongs in Security chapter

Resource Limits






needs to be added by 10.0, how to compile ports to 5.6.3 and how to compile world to


AllanJude, mm?

info on deduplication, RAIDZ3, zfs diff, zfs split, snapshot holds, etc. needs to be added to 21.2

GEOM scheduler


update 20 with pertinent info about new scheduler



somewhere in 19

Event timers

mav?, davide?

perhaps in 23

5 new congestion algorithms

lstewart?, gnn

perhaps create a TCP section under Tuning?



needs to be mentioned in 32.12


gnn, brooks?

needs to be mentioned in 15.10, maybe xref tcp tuning?

USB 3.0


needs to be mentioned in 19.5

NFSv4 and clear_locks(8)


need to be mentioned in 30.3



perhaps can be dump subsection of 26?

IPFW call and return actions


need to be added to 31.6

Use GPT over MBR over BSD partition types where appropriate

scottl?, nathanw?

Should be applied to the whole handbook or at least the sections covering disk formatting like 20.4.2, etc.

Using pipes and redirection in the shell

lacking from "Unix Basics" chapter, probably between 4.7 and 4.8

Table 3: Tagging Cheat Sheet

Tag Name

When to Use


syctl values, loader values, shell script variables


command switches and options


catch-all for everything else (not all tags are listed, more need to be added to this table)

Table 4: Chapter Status

The latest version of this chart is available from

Possible statuses are: needs review, needs to be written, needs to be removed, ready to publish.

Chapters which are currently missing from the Handbook should be added to the Table as they are written. Sections that are removed from the Handbook should also be removed from the table (and renumbered accordingly).

As PRs are closed, they should be removed from the Outstanding PRs column.

To ease review, the Chapter number listed in the table is at it appears in the online Handbook. This may or may not reflect the number that will be used in the printed edition. Table also includes extra items needed for a published edition (e.g. cover, masthead, index, etc.).

The following color codes are used to indicate the status of the items:



will not be part of the printed book

is being worked on




Outstanding PRs

Estimated Completion Date


Cover Front/Back

needs graphic and text for back cover


includes publication info, license, book copyright


need to review book for copyrighted terms and make sure they are attributed


current print edition has paragraph describing the tools that are used to generate Handbook


need to use index tag for keywords in order to generate a useful index for book



Intended Audience

Changes from the Third Edition

Organization of This Book

Conventions used in this book

should be title capitalized

Typographic Conventions

User Input



I. Getting Started

1 Introduction

1.1 Synopsis

1.2 Welcome to FreeBSD!

1.2.1 What Can FreeBSD Do?

1.2.2 Who Uses FreeBSD?

1.3 About the FreeBSD Project

1.3.1 A Brief History of FreeBSD

1.3.2 FreeBSD Project Goals

1.3.3 The FreeBSD Development Model

1.3.4 The Current FreeBSD Release

3 Installing FreeBSD 9.x and Later


(somewhere add info about Live DVD)

The online Chapter 2 will not be included as it does not cover 9.x

3.1 Synopsis

3.2 Hardware Requirements

3.2.1 Minimal Configuration

can the subsections be combined into a Table? FreeBSD/i386 FreeBSD/amd64 FreeBSD/powerpc FreeBSD/sparc64

3.2.2 Supported Hardware

3.3 Pre-installation Tasks

3.3.1 Back Up Your Data

3.3.2 Decide Where to Install FreeBSD Disk Layouts for FreeBSD/i386 and FreeBSD/amd64

3.3.3 Collect Network Information

3.3.4 Check for FreeBSD Errata

3.3.5 Prepare the Installation Media

3.4 Starting the Installation

3.4.1 Booting Booting on i386 and amd64 Booting for Macintosh PowerPC Booting for SPARC64

3.4.2 Reviewing the Device Probe Results

3.5 Introducing bsdinstall

3.5.1 Selecting the Keymap Menu

3.5.2 Setting the Hostname

3.5.3 Selecting Components to Install

3.6 Installing from the Network

3.7 Allocating Disk Space

3.7.1 Guided Partitioning

3.7.2 Manual Partitioning

3.8 Committing to the Installation

3.9 Post-installation


3.9.1 Setting the root Password

3.9.2 Configuring Network Interfaces Configuring a Wireless Network Interface Configuring IPv4 Networking IPv4 DHCP Network Configuration IPv4 Static Network Configuration Configuring IPv6 Networking IPv6 Stateless Address Autoconfiguration IPv6 Static Network Configuration Configuring DNS

3.9.3 Setting the Time Zone

3.9.4 Selecting Services to Enable

3.9.5 Enabling Crash Dumps

3.9.6 Add Users

3.9.7 Final Configuration

3.9.8 FreeBSD Booting and Shutdown FreeBSD/i386 Booting

3.9.9 FreeBSD Shutdown

3.10 Troubleshooting

3.10.1 What to Do If Something Goes Wrong

3.10.2 Troubleshooting Questions and Answers

2.12 Advanced Installation Guide

docs/120125 (may be more suited to 32.7.1?)

is this applicable to 9.x?

2.13 Preparing Your Own Installation Media

is this applicable to 9.x?

4 UNIX Basics

4.1 Synopsis

4.2 Virtual Consoles and Terminals

4.2.1 The Console

4.2.2 Logging into FreeBSD

4.2.3 Multiple Consoles

4.2.4 The /etc/ttys File

4.2.5 Single User Mode Console

4.2.6 Changing Console Video Modes

4.3 Permissions

docs/160445 was implemented - anything else?

4.3.1 Symbolic Permissions

4.3.2 FreeBSD File Flags

4.3.3 The setuid, setgid, and sticky Permissions

4.4 Directory Structure

4.5 Disk Organization

4.6 Mounting and Unmounting File Systems

4.6.1 The fstab File

4.6.2 The mount Command

4.6.3 The umount Command

4.7 Processes

4.8 Daemons, Signals, and Killing Processes

4.8.1 Sending a Signal to a Process

currently not tagged as a header

4.9 Shells


4.9.1 Changing Your Shell

4.10 Text Editors

4.11 Devices and Device Nodes

is this section still needed? basically adds 2 subsections with only meat being link to devfs(5)

4.11.1 Creating Device Nodes DEVFS (DEVice File System)

4.12 Binary Formats

4.13 For More Information

does this belong here or in Appendix?

4.13.1 Manual Pages

4.13.2 GNU Info Files

does anyone still do this?

5 Installing Applications: Packages and Ports

5.1 Synopsis

5.2 Overview of Software Installation

5.3 Finding Your Application

5.4 Using the Packages System

docs/129464, docs/125329

5.4.1 Installing a Package

5.4.2 Managing Packages

5.4.3 Deleting a Package

5.4.4 Miscellaneous

this one-liner shouldn't be its own section but incorporated into the chapter

5.5 Using the Ports Collection

5.5.1 Obtaining the Ports Collection

this section contains 4 subsections which aren't tagged as such; for book, cvsup and sysinstall method should be removed and pkgng inserted

5.5.2 Migrating from CVSup/csup to portsnap

should be reworded for book e.g. Using Portsnap

5.5.3 Installing Ports Overriding the Default Ports Directories Dealing with imake

(section is gone) With should be capitilized Reconfiguring Ports

5.5.4 Removing Installed Ports

5.5.5 Upgrading Ports /usr/ports/UPDATING


Title should include a verb e.g. Read Upgrading Ports Using Portupgrade

should be marked as deprecated and not included in published version Upgrading Ports Using Portmaster

portmaster should be lowercase and formatted as a command

5.5.6 Ports and Disk Space

5.6 Post-installation Activities

(XXXTR: Title was hard, still not happy with it. Rewrote to avoid "you" and add more information.) clunky title name, should be something that indicates how to get installed port info

5.7 Dealing with Broken Ports

6 The X Window System

new section 6.8 Troubleshooting

6.1 Synopsis

renamed to Introduction

6.2 Understanding X

renamed to Terminology

6.2.1 Why X?


6.2.2 The X Client/Server Model


6.2.3 The Window Manager

no longer a subsection

6.2.4 Widgets

no longer a subsection

6.3 Installing X11

renamed to Installing Xorg

6.4 X11 Configuration

renamed to Xorg Configuration; examples should be reviewed

6.4.1 Before Starting

no longer a subsection

6.4.2 Configuring X11

no longer a subsection

6.4.3 Advanced Configuration Topics

section and subsections currently part of 6.8 Configuration with Intel i810 Graphics Chipsets

is this still relevant? Adding a Widescreen Flatpanel to the Mix

example needs to be tested

6.5 Using Fonts in X11

renamed to 6.7 Configuring Fonts

6.5.1 Type1 Fonts

6.5.2 TrueType Fonts in X11

6.5.3 Anti-Aliased Fonts in X11

6.6 The X Display Manager

renamed to Display Managers; subsections incorporated into section; KDM section needs more work

6.6.1 Overview

should be renamed to Synopsis

6.6.2 Using XDM

6.6.3 Configuring XDM

each file is no longer its own subsection Xaccess Xresources Xservers Xsession Xsetup_* xdm-config xdm-errors

6.6.4 Running a Network Display Server

6.6.5 Replacements for XDM

6.7 Desktop Environments

renamed to 6.5 Installing a Desktop Environment

6.7.1 GNOME

subsections are now incorporated About GNOME Installing GNOME

6.7.2 KDE

subsections are now incorporated About KDE

should not be a sub-section, should be 6.7.2 Installing KDE

why is KDE bolded? also, no space between KDE and 3/4

6.7.3 More Details on KDE Display Manager

now a subsection of Display Managers The KDE

6.7.4 XFCE

subsections are now incorported About XFCE Installing XFCE

II. Common Tasks

7 Desktop Applications

in decent shape, 7.x/8.x sections need to be removed

7.1 Synopsis

7.2 Browsers

7.2.1 Firefox

7.2.2 Firefox and Java Plugin

7.2.3 Firefox and Adobe Flash Plugin

7.2.4 Firefox and Swfdec Flash Plugin

7.2.5 Opera

7.2.6 Konqueror

7.2.7 Chromium

7.2.8 Chromium and Java Plugin

7.2.9 Chromium and Adobe Flash Plugin

7.3 Productivity

7.3.1 KOffice

renamed to Calligra

7.3.2 AbiWord

7.3.3 The GIMP

7.3.4 Apache OpenOffice

7.3.5 LibreOffice

7.4 Document Viewers

7.4.1 Acrobat Reader

7.4.2 gv

7.4 Xpdf

7.4 GQview

7.5 Finance

7.5.1 GnuCash

7.5.2 Gnumeric

7.5.3 Abacus

removed as deprecated

7.5.4 KMyMoney

7.6 Summary

incorporated into synopsis

8 Multimedia

docs/57298 (add info about CF)

8.1 Synopsis

8.2 Setting Up the Sound Card


needs a synopsis, needs to be updated for new sound subsystem, and probably needs to be divided into a Quick Start and Advanced Configuration/Troubleshooting

8.2.1 Configuring the System Configuring a Custom Kernel with Sound Support

deprecated in 9 due to new sound subsystem

8.2.2 Testing the Sound Card Common Problems

should be retitled Troubleshooting and placed at end of section

8.2.3 Utilizing Multiple Sound Sources

8.2.4 Setting Default Values for Mixer Channels

8.3 MP3 Audio

needs a Synopsis

8.3.1 MP3 Players

8.3.2 Ripping CD Audio Tracks

8.3.3 Encoding MP3s

should be combined with 8.3.4 and retitled Encoding and Decoding MP3s

8.3.4 Decoding MP3s

8.4 Video Playback

8.4.1 Determining Video Capabilities XVideo Simple Directmedia Layer Direct Graphics Access

8.4.2 Ports and Packages Dealing with Video MPlayer Building MPlayer Using MPlayer mencoder The xine Video Player Thetranscode Utilities

8.4.3 The xine Video Player

belongs in synopsis rather than a new section? mentioned promising applications should be added to section or removed

8.5 Setting Up TV Cards

8.5.1 Introduction

should be renamed to Synopsis

8.5.2 Adding the Driver

8.5.3 Useful Applications

8.5.4 Troubleshooting

8.6 MythTV

8.6.1 Hardware

8.6.2 Dependencies

Migrated to introduction

8.6.3 Setting up MythTV

8.7 Image Scanners

8.7.1 Introduction

should be renamed to Synopsis XXXTR: Removed, no need for a section title then another section without any information

8.7.2 Kernel Configuration

redundant, needs to be removed USB Interface

redundant, any remaining meat needs to be incorporated into Synopsis SCSI Interface

is this also redundant? can it be incorporated into Synopsis?

8.7.3 SANE Configuration

8.7.4 Giving Other Users Access to the Scanner

9 Configuring the FreeBSD Kernel

9.1 Synopsis

9.2 Why Build a Custom Kernel?

9.3 Finding the System Hardware

9.4 Kernel Drivers, Subsystems, and Modules


9.5 Building and Installing a Custom Kernel

9.5.1 Building a Kernel

not tagged as a subsection

9.6 The Configuration File

9.6.1 Large Memory Configurations (PAE)

9.7 If Something Goes Wrong

10 Printing

10.1 Synopsis

10.2 Introduction

10.2.1 Why You Should Use the Spooler

10.3 Basic Setup

10.3.1 Simple Printer Setup Hardware Setup Ports and Cables Parallel Ports Serial Ports Kernel Configuration Setting the Communication Mode for the Parallel Port Checking Printer Communications Checking a Parallel Printer Checking a Serial Printer Enabling the Spooler: the /etc/printcap File Naming the Printer Suppressing Header Pages Making the Spooling Directory Identifying the Printer Device Configuring Spooler Communication Parameters Installing the Text Filter Turn on LPD Trying It Out

10.4 Advanced Printer Setup


10.4.1 Filters How Filters Work Accomodating Plain Text Jobs on PostScript Printers Simulating PostScript on Non PosScript Printers Conversion Filters Why Install Conversion Filters? Which Coversion Filters Should I Install? Installing Conversion Filters More Conversion Filter Examples Automated Conversion: an Alternative to Conversion Filters Output Filters lpf: a Text Filter

10.4.2 Header Pages Enabling Header Pages Controlling Header Pages Accounting for Header Pages Header Pages on PostScript Printers

10.4.3 Networked Printing Printers Installed on Remote Hosts Printers with Networked Data Stream Interfaces

10.4.4 Restricting Printer Usage Restricting Multiple Copies Restricting Access to Printers Controlling Sizes of Jobs Submitted Restricting Jobs from Remote Hosts Accounting for Printer Usage Quick and Dirty Printer Accounting How Can You Count Pages Printed?

10.5 Using Printers

10.5.1 Printing Jobs

10.5.2 Checking Jobs

10.5.3 Removing Jobs

10.5.4 Beyond Plain Text: Printing Options Formatting and Conversion Options Job Handling Options Header Page Options

10.5.5 Administering Printers

10.6 Alternatives to the Standard Spooler

10.7 Troubleshooting

11 Linux Binary Compatibility

11.1 Synopsis

11.2 Installation

11.2.1 Installing Linux Runtime Libraries Installing Using the linux_base Port Installing Libraries Manually How to Install Additional Shared Libraries

11.2.2 Installing Linux ELF Binaries

11.2.3 Installing a Random Linux RPM Based Application

11.2.4 Configuring the Hostname Resolver

11.3 Installing Mathematica®

11.3.1 Running the Mathematica Installer

11.3.2 Modifying the Mathematica Executables

11.3.3 Obtaining Your Mathematica Password

11.3.4 Running the Mathematica Frontend over a Network

11.4 Installing Maple™

11.4.1 Common Pitfalls

11.5 Installing MATLAB®


11.5.1 Installing MATLAB

11.5.2 License Manager Startup

11.5.3 Linking the Java Runtime Environment

11.5.4 Creating a MATLAB Startup Script

11.5.5 Creating MATLAB Shutdown Script

11.5.6 Using MATLAB

11.6 Installing Oracle®

11.6.1 Preface

should be replaced with a Synopsis

11.6.2 Installing the Linux Environment

11.6.3 Creating the Oracle Environment Kernel Tuning Oracle Account Environment

11.6.4 Installing Oracle Patching Patching genIntsh

11.6.5 Running Oracle

11.7 Advanced Topics

11.7.1 How Does It Work?

III. System Administration

12 Configuration and Tuning

12.1 Synopsis

12.2 Initial Configuration

12.2.1 Partition Layout Base Partitions Swap Partition Why Partition?

12.3 Core Configuration

12.4 Application Configuration

12.5 Starting Services

12.5.1 Extended Application Configuration

12.5.2 Using Services to Start Services

12.6 Configuring the cron Utility

12.6.1 Installing a Crontab

12.7 Using rc(8) Under FreeBSD

12.8 Setting Up Network Interface Cards


12.8.1 Locating the Correct Driver Using Windows NDIS Drivers

12.8.2 Configuring the Network Card

12.8.3 Testing and Troubleshooting Testing the Ethernet Card Troubleshooting

12.9 Virtual Hosts

12.10 Configuring the System Logger, syslogd

syslogd needs to be formatted as a command

12.10.1 Using syslogd

12.10.2 Configuring syslogd

12.10.3 Log Management and Rotation with newsyslog

newsyslog needs to be formatted as a command Configuring newsyslog

12.11 Configuration Files

12.11.1 /etc Layout

12.11.2 Hostnames /etc/resolv.conf /etc/hosts

12.11.3 sysctl.conf

12.12 Tuning with sysctl(8)


12.12.1 sysctl(8) Read-only


12.13 Tuning Disks

needs a Synopsis

12.13.1 Sysctl Variables

sysctl should be lowercase and formatted as a command; all of the subsections could be reduced to a Table with an introductory paragraph vfs.vmiodirenable vfs.write_behind vfs.hirunningspace vfs.swap_idle_enabled hw.ata.wc SCSI_DELAY (

12.13.2 Soft Updates

deprecated due to SUJ? More Details About Soft Updates

should be replaced with SUJ info?

12.14 Tuning Kernel Limits

needs a Synopsis

12.14.1 File/Process Limits kern.maxfiles kern.ipc.somaxconn

12.14.2 Network Limits net.inet.ip.portrange.* TCP Bandwidth Delay Product

12.14.3 Virtual Memory

needs a Synopsis kern.maxvnodes

12.15 Adding Swap Space

12.15.1 Swap on a New or Existing Hard Drive

12.15.2 Swapping over NFS

12.15.3 Swapfiles

one or two word consistency needed

12.16 Power and Resource Management

12.16.1 What is ACPI?

12.16.2 Shortcomings of Advanced Power Management (APM)

12.16.3 Configuring ACPI

12.17 Using and Debugging FreeBSD ACPI

12.17.1 Submitting Debugging Information

12.17.2 Background

should be combined with 12.16.1

12.17.3 Common Problems

should be renamed to Troubleshooting Mouse Issues Suspend/Resume System Hangs (Temporary or Permanent) Panics System Powers Up After Suspend or Shutdown Other Problems

12.17.4 ASL, acpidump, and IASL

12.17.5 Fixing Your ASL

ASL and AML need to be defined _OS Dependencies Missing Return Statements Overriding the Default AML

12.17.6 Getting Debugging Output from ACPI

12.17.7 References

13 The FreeBSD Booting Process

13.1 Synopsis

13.2 The Booting Problem

13.3 The Boot Manager and Boot Stages


13.3.1 The Boot Manager

13.3.2 Stage one, /boot/boot1, and Stage Two, /boot/boot2

suggest renaming to just the stages or just the /boots in this whole section as commas get weird

13.3.3 Stage Three, /boot/loader Loader Program Flow Loader Built-In Commands Loader Examples Boot Time Splash Screens Splash Screen Function Enabling the Splash Screen Function

13.4 Kernel Interaction During Boot

13.4.1 Kernel Boot Flags

13.5 Device Hints

13.6 Init: Process Control Initialization

13.6.1 Automatic Reboot Sequence

13.6.2 Single-User Mode

13.6.3 Multi-User Mode Resource Configuration (rc)

suggest removing rc from title or formatting as command

13.7 Shutdown Sequence

14 Users and Basic Account Management


14.1 Synopsis

14.2 Introduction

14.3 The Superuser Account

14.4 System Accounts

14.5 User Accounts

14.6 Modifying Accounts

14.6.1 adduser

14.6.2 rmuser

14.6.3 chpass

14.6.4 passwd

14.6.5 pw

14.7 Limiting Users

Still needed? Migrate to rctl section?

14.8 Groups

15 Security


15.1 Synopsis

15.2 Introduction

15.3 Securing FreeBSD

15.3.1 Securing the root Account and Staff Accounts

15.3.2 Securing Root-run Servers and SUID/GUID Binaries

15.3.3 Securing User Accounts

15.3.4 Securing the Password File

15.3.5 Securing the Kernel Core, Raw Devices, and File Systems

remove the word Core?

15.3.6 Checking File Integrity: Binaries, Configuration Files, Etc.

suggest renaming to Checking File Integrity

15.3.7 Paranoia

belongs in the Synopsis

15.3.8 Denial of Service Attacks

needs to include acronym

15.3.9 Access Issues with Kerberos and SSH

15.4 DES, Blowfish, MD5, SHA256, SHA512, and Crypt


suggest renaming to Hashing Algorithms

15.4.1 Recognizing Your Crypt Mechanism

15.5 One-time Passwords

15.5.1 Secure Connection Initialization

15.5.2 Insecure Connection Initialization

15.5.3 Generating a Single One-time Password

15.5.4 Generating Multiple One-time Passwords

15.5.5 Restricting Use of Unix® Passwords

15.6 TCP Wrappers

15.6.1 Initial Configuration

15.6.2 Advanced Configuration External Commands Wildcard Options

15.7 Kerberos5

15.7.1 History

15.7.2 Setting up a Heimdal KDC

15.7.3 Kerberos Enabling a Server with Heimdal Services

15.7.4 Kerberos Enabling a Client with Heimdal

15.7.5 User Configuration Files: .k5login and .k5users

15.7.6 Kerberos Tips, Tricks, and Troubleshooting

15.7.7 Differences with the MIT Port

15.7.8 Mitigating Limitations Found in Kerberos Kerberos is an all-or-nothing approach

title capitalization, all of these subsections could be a bulletted list in 15.7.8 Kerberos is Intended for Single-User Workstations The KDC is a Single Point of Failure Kerberos Shortcomings

15.7.9 Resources and further information

title capitalization

15.8 OpenSSL

15.8.1 Generating Certificates

15.8.2 Using Certificates, an Example

remove "an Example" from title

15.9 VPN over IPsec


15.9.1 Understanding IPsec


15.9.2 The Problem


should not be a subsection but incorporated where appropriate

15.9.3 The Scenario: blah blah blah


terrible title, should not be a subsection but incorporated into an example, does not seem to match any of the examples in this section

15.9.4 Configuring IPsec on FreeBSD


15.10 OpenSSH

15.10.1 Advantages of Using OpenSSH

15.10.2 Enabling sshd

sshd should be formatted as a command

15.10.3 SSH Client

15.10.4 Secure Copy

15.10.5 Configuration

useless as-is, should either be incorporated into a Synopsis or provide examples

15.10.6 ssh-keygen

15.10.7 ssh-agent and ssh-add

need to be formatted as commands

15.10.8 SSH Tunneling Practical SSH Tunneling Examples Secure Access of a POP3 Server Bypassing a Draconian Firewall

15.10.9 The AllowUsers Users Option


"Users" is redundant in title

15.10.10 Further Reading

15.11 File System Access Control Lists


needs to include acronym

15.11.1 Making Use of ACLs

15.12 Monitoring Third Party Security Issues

15.13 FreeBSD Security Advisories

15.13.1 What Does an Advisory Look Like?

needs an example that is not nearly 10 years old

15.14 Process Accounting

15.14.1 Enable and Utilizing Process Accounting


title not grammatically correct

16 Jails

16.1 Synopsis

16.2 Terms Related to Jails

16.3 Introduction

should this be part of Synopsis?

16.3.1 What is a Jail

needs better title

16.4 Creating and Controlling Jails

16.5 Fine Tuning and Administration


16.5.1 System Tools for Jail Tuning in FreeBSD

16.5.2 High-Level Administrative Tools in the FreeBSD Ports Collection

could be part of Synopsis

16.6 Application of Jails


16.6.1 Service Jails Design Creating the Template Creating Jails Upgrading

17 Mandatory Access Control

17.1 Synopsis

17.1.1 What Will Not Be Covered

should probably be in Synopsis

17.2 Key Terms in this Chapter

17.3 Explanation of MAC

17.4 Understanding MAC Labels

17.4.1 Label Configuration Common Label Types Advanced Label Configuration Users and Label Settings Network Interfaces and Label Settings

17.4.2 Singlelabel or Multilabel?

17.5 Planning the Security Configuration

17.6 Module Configuration

17.7 The MAC seeotheruids Module

17.8 The MAC bsdextended Module

17.8.1 Examples

17.9 The MAC ifoff Module

17.10 The MAC portacl Module

17.10.1 Examples

17.11 The MAC partition Module

17.11.1 Examples

17.12 The MAC Multi-Level Security Module

17.12.1 Planning Mandatory Sensitivity

17.13 The MAC Biba Module

17.13.1 Planning Mandatory Sensitivity

17.14 The MAC LOMAC Module

17.14.1 Examples

17.15 Nagios in a MAC Jail


17.15.1 Create an insecure User Class

title capitalization

17.15.2 Boot Configuration

17.15.3 Configure Users

17.15.4 Create the Contexts File

17.15.5 Enable Networking

17.15.6 Testing the Configuration

17.16 User Lock Down

17.17 Troubleshooting the MAC Framework

17.17.1 The multilabel option cannot be enabled on /

17.17.2 X11 Server Will Not Start After MAC

should be Xorg

17.17.3 Error: secure_path(3) cannot stat .login_conf

17.17.4 The root username is broken!

18 Security Event Auditing

18.1 Synopsis

18.2 Key Terms in this Chapter

18.3 Installing Audit Support

18.4 Audit Configuration

18.4.1 Event Selection Expressions

18.4.2 Configuration Files The audit_control File The audit_user File

18.5 Administering the Audit Subsystem

18.5.1 Viewing Audit Trails

18.5.2 Reducing Audit Trails

18.5.3 Delegating Audit Review Rights

18.5.4 Live Monitoring Using Audit Pipes

18.5.5 Rotating Audit Trail Files

18.5.6 Compressing Audit Trails

19 Storage

19.1 Synopsis

19.2 Device Names

19.3 Adding Disks

19.3.1 Using sysinstall(8)

19.3.2 Using Command Line Utilities

subsections don't really match this title e.g. sounds like "Slices" is the name of a utility Using Slices Dedicated

19.4 RAID

needs a Synopsis

19.4.1 Software RAID Concatenated Disk Driver (CCD) Configuration Installing the Hardware Setting Up the CCD Building the File System Making it All Automatic The Vinum Volume Manager

why is it in chapter 22 and not here?

19.4.2 Hardware RAID

19.4.3 Rebuilding ATA RAID1 Arrays

19.5 USB Storage Devices

docs/119545, docs/172370 (add BlueRay)

needs to be updated for new USB subsystem and USB3

19.5.1 Configuration

should be part of the Synopsis

19.5.2 Testing the Configuration

19.5.3 Further Reading

19.6 Creating and Using Optical Media (CDs)


19.6.1 Introduction

19.6.2 mkisofs

format as command

19.6.3 burncd

format as command

19.6.4 cdrecord

format as command

19.6.5 Duplicating Audio CDs SCSI Drives

not tagged as heading ATAPI Drives

not tagged as heading

19.6.6 Duplicating Data CDs

19.6.7 Using Data CDs

19.6.8 Burning Raw Data CDs

19.6.9 Using the ATAPI/CAM Driver

19.7 Creating and Using Optical Media (DVDs)

19.7.1 Introduction

19.7.2 Configuration

19.7.3 Burning Data DVDs

19.7.4 Burning a DVD-Video

remove hyphen

19.7.5 Using a DVD+RW

19.7.6 Using a DVD-RW

19.7.7 Multisession

19.7.8 For More Information

19.7.9 Using a DVD-RAM

subsections could all go here Configuration Preparing the Medium Using the Medium

19.8 Creating and Using Floppy Disks


does this belong in published edition?

19.8.1 Formatting Floppies

all of its subsections could go here The Device Formatting Formatting Floppy Disks

19.8.2 The Disk Label

19.8.3 The File System

19.8.4 Using the Floppy

19.9 Creating and Using Data Tapes

would benefit from more than a one-liner introduction; sections 19.9.1-19.9.5 could be combined into a Synopsis or Terminology section

19.9.1 4mm (DDS: Digital Data Storage)

19.9.2 8mm (Exabyte)

19.9.3 QIC

19.9.4 DLT

19.9.5 AIT

19.9.6 Using a New Tape for the First Time

after all of this, do we know how to use tapes on FreeBSD?

19.10 Backups to Floppies

long deprecated; whole section should be removed

19.11 Backup Strategies

19.12 Backup Basics


fixit mentioned here

19.12.1 Dump and Restore

remove caps and format as commands

19.12.2 tar

19.12.3 cpio

19.12.4 pax

19.12.5 Amanda

19.12.6 Do Nothing

meat belongs in Synopsis

19.12.7 Which Backup Program is Best

meat belongs in Synopsis

19.12.8 Emergency Restore Procedure Before the Disaster After the Disaster

19.13 Network, Memory, and File-Backed File Systems

Network not mentioned in subsections

19.13.1 File-Backed File System

19.13.2 Memory-Based File System

should match title in 9.13.1

19.13.3 Detaching a Memory Disk from the System

19.14 File System Snapshots

should be divided into UFS and ZFS sections with a Synopsis comparing the two

19.15 File System Quotas

19.15.1 Configuring Your System to Enable Disk Quotas

19.15.2 Setting Quota Limits

19.15.3 Checking Quota Limits and Disk Usage

19.15.4 Quotas over NFS

19.16 Encrypting Disk Partitions

19.16.1 Disk Encryption with gbde

format gbde Preparing the Encrypted Hard Drive Mounting Existing Encrypted File Systems Automatically Mounting Encrypted Partitions Cryptographic Protections Employed by gbde Compatibility Issues

19.16.2 Disk Encryptionn with geli Using the geli rc.d Script

19.17 Encrypting Swap Space

19.17.1 Why Should Swap be Encrypted?

Migrated to introduction

19.17.2 Preparation

Migrated to introduction

19.17.3 Swap Encryption with gbde(8)

19.17.4 Swap Encryption with geli(8)

19.17.5 Verifying That it Works

19.18 Highly Available Storage (HAST)

19.18.1 Synopsis

19.18.2 HAST Features

19.18.3 HAST Operation Synchronization and Replication Modes

19.18.4 HAST Configuration Failover Configuration

19.18.5 Troubleshooting General Troubleshooting Tips Recovering from the Split-brain Condition

20 GEOM: Modular Disk Transformation Framework

20.1 Synopsis

20.2 GEOM Introduction

belongs in Synopsis

20.3 RAID0 - Striping

20.3.1 Creating a Stripe of Unformatted ATA Disks

not formatted as heading

20.4 RAID1 - Mirroring

docs/164620, docs/124716, docs/136712

20.4.1 Metadata Issues

20.4.2 Creating a Mirror with Two New Disks

20.4.3 Creating a Mirror with an Existing Drive

update to use GPT instead of MBR

20.4.4 Troubleshooting

does not need to be divided into subsections Problems with Booting BIOS Settings Boot Problems

20.4.5 Recovering from Disk Failure

20.5 RAID3 - Byte-level Striping with Dedicated Parity

20.5.1 Creating a Dedicated RAID3 Array

20.6 GEOM Gate Network Devices

20.7 Labeling Disk Devices

20.7.1 Label Types and Examples

20.8 UFS Journaling Through GEOM

21 File Systems Support

21.1 Synopsis

needs to introduce ZFS and SUJ as default options and describe how to select during installation, and the rest as supported foreign filesystems; needs to include SUJ (move from 20.8?)

21.2 The Z File System (ZFS)

docs/139336, docs/162419

needs to introduce ZFS terminology

21.2.1 ZFS Tuning Memory

belongs under Synopsis Kernel Configuration

is this deprecated or recommended practice? Loader Tunables

21.2.2 Using ZFS Single Disk Pool ZFS RAID-Z

is dash official term? Recovering RAID-Z Data Verification ZFS Quotas ZFS Reservations

21.3 Linux® Filesystems

needs more than a oneliner

21.3.1 Ext2FS

needs to include EXT3/4

21.3.2 XFS

21.3.3 ReiserFS

22 The Vinum Volume Manager

22.1 Synopsis

22.2 Disks Are Too Small

should be in synopsis?

22.3 Access Bottlenecks

22.4 Data Integrity

22.5 Vinum Objects

22.5.1 Volume Size Considerations

22.5.2 Redundant Data Storage

22.5.3 Performance Issues

22.5.4 Which Plex Organization?

22.6 Some Examples

22.6.1 The Configuration File

22.6.2 Increased Resilience: Mirroring

22.6.3 Optimizing Performance

22.6.4 Resilience and Performance

22.7 Object Naming


22.7.1 Creating File Systems

22.8 Configuring Vinum

22.8.1 Startup Automatic Startup

22.9 Using Vinum for the Root Filesystem

22.9.1 Starting up Vinum Early Enough for the Root Filesystem

22.9.2 Making a Vinum-based Root Volume Accessible to the Bootstrap

22.9.3 Example of a Vinum-based Root Setup

22.9.4 Troubleshooting System Bootstrap Loads, but System Does Not Boot Only Primary Bootstrap Loads Nothing Boots, the Bootstrap Panics

23 Virtualization


23.1 Synopsis

23.2 FreeBSD as a Guest OS


needs a section covering FreeBSD on KVM, needs section on qemu

23.2.1 Parallells on MacOS

should be Mac OS X Installing FreeBSD on Parallels/Mac OS® X

figures need titles Configuring FreeBSD on Mac OS X/Parallels

23.2.2 Virtual PC on Windows Installing FreeBSD on Virtual PC/Microsoft® Windows

be consistent with name, figures need titles Configuring FreeBSD on Microsoft Windows/Virtual PC

23.2.3 VMware on MacOS

should be Mac OS X Installing FreeBSD on VMware/Mac OS X

figures need titles Configuring FreeBSD on Mac OS X/VMware

be consistent with name

23.2.4 VirtualBox™ Guest Additions on a FreeBSD Guest

should be ®

23.3 FreeBSD as a Host OS

23.3.1 Installing VirtualBox

23.3.2 VirtualBox USB Support

23.3.3 VirtualBox Host DVD/CD Access

24 Localization - I18N/L10N Usage and Setup

24.1 Synopsis

24.2 The Basics

doesn't need to be divided into subsections

24.2.1 What Is I18N/L10N?

24.2.2 Why Should I Use I18N/L10N?

24.2.3 What Languages Are Supported in the I18N Effort?

24.3 Using Localization

24.3.1 Language and Country Codes

24.3.2 Encodings

24.3.3 I18N Applications

24.3.4 Setting Locale Setting Locale Methods Login Classes Method User Level Setup Administrator Level Setup Changing Login Classes with vipw(8)

not tagged as heading Changing Login Classes with adduser(8)

not tagged as heading Changing Login Classes with pw(8)

not tagged as heading Shell Startup File Method

24.3.5 Console Setup

24.3.6 X11 Setup

should be Xorg Displaying Fonts Inputting Non-English Characters

24.3.7 Printer Setup

24.3.8 Kernel and File Systems

24.4 Compiling I18N Programs

24.5 Localizing FreeBSD to Specific Languages

needs Synopsis

24.5.1 Russian Language (KOI8-R Encoding) Locale Setup Console Setup Printer Setup MSDOS FS and Russian Filenames X11 Setup

should be Xorg

24.5.2 Traditional Chinese Localization for Taiwan

24.5.3 German Language Localization (for All ISO 8859-1 Languages)

24.5.4 Greek Language Localization

24.5.5 Japanese and Korean Language Localization

24.5.6 Non-English FreeBSD Documentation

should be in Synopsis

25 Updating and Upgrading FreeBSD


25.1 Synopsis

25.2 FreeBSD Update


25.2.1 The Configuration File

25.2.2 Security Patches

25.2.3 Major and Minor Upgrades

25.2.4 System State Comparison

25.3 Portsnap: a Ports Collection Update Tool

25.4 Updating the Documentation Set

25.4.1 Using Subversion to Update the Documentation

25.4.2 Installing Subversion and the Documentation Toolchain

25.4.3 Updating the Documentation Sources

25.4.4 Tunable Options of the Documentation Sources

25.4.5 Installing the FreeBSD Documentation from Source

25.4.6 Using Documentation Ports Building and Installing Documentation Ports Common Knobs and Options Using Documentation Packages Updating Documentation Ports

25.5 Tracking a Development Branch

25.5.1 Staying Current with FreeBSD

this and all its subsections belongs in a Synopsis What is FreeBSD-CURRENT? Who Needs FreeBSD-CURRENT? What Is FreeBSD-CURRENT Not? Using FreeBSD-CURRENT

25.5.2 Staying Stable with FreeBSD

needs to be updated to include 2 stable branches and why there are 2, this and all its subsections belongs in a Synopsis What is FreeBSD-STABLE? Who Needs FreeBSD-STABLE? Using FreeBSD-STABLE

25.6 Synchronizing Your Source

25.7 Rebuilding “world”


25.7.1 The Canonical Way to Update Your System

25.7.2 Read /usr/src/UPDATING

25.7.3 Check /etc/make.conf

25.7.4 Update the Files in /etc

25.7.5 Drop to Single User Mode

25.7.6 Remove /usr/obj

25.7.7 Recompile the Base System

does not need to be further sub-sectioned Saving the Output Compile the Base System Timings

25.7.8 Compile and Install a New Kernel

25.7.9 Reboot into Single User Mode

could be at beginning of 25.7.10

25.7.10 Install the New System Binaries

25.7.11 Update Files Not Updated by make installworld mergemaster Manual Update

25.7.12 Rebooting

25.7.13 Finished

this and 25.7.12 could be incorporated into 25.7.11

25.7.14 Questions

this and subsections could be in Synopsis Do I need to re-make the world for every change?

questions should not be a title or their own subsection My compile failed with lots of signall 11 (or other signal number) errors. What has happened

tagged incorrectly Can I remove /usr/obj when I have finished? Can interrupted builds be resumed? How can I speed up making the world? What do I do if something goes wrong?

25.8 Deleting Obsolete Files, Directories and Libraries

25.9 Tracking for Multiple Machines

25.9.1 Preliminaries

some of these subsections belong in a Synopsis

25.9.2 The Base System

25.9.3 Ports

26 DTrace

26.1 Synopsis

26.2 Implementation Differences

26.3 Enabling DTrace Support


26.4 Using DTrace

26.5 The D Language

IV. Network Communication

27 Serial Communications

27.1 Synopsis

27.2 Introduction

27.2.1 Terminology

27.2.2 Cables and Ports Cables Null-modem Cables

tables not rendered as tables? Standard RS-232C Cables Ports Kinds of Ports Port Names

27.2.3 Kernel Configuration

27.2.4 Device Special Files

27.2.5 Serial Port Configuration

27.3 Terminals

27.3.1 Uses and Types of Terminals

27.31.1 Dumb Terminals PCs Acting as Terminals X Terminals

should be Xorg

27.3.2 Configuration Adding an Entry to /etc/ttys Force init to Reread /etc/ttys

27.3.3 Troubleshooting Your Connection

subsections could all go here No Login Prompt Appears If Garbage Appears Instead of a Login Prompt Characters Appear Doubled; the Password Appears When Typed

27.4 Dial-in Service

27.4.1 External Versus Internal Modems Modems and Cables

27.4.2 Serial Interface Considerations

27.4.3 Quick Overview

27.4.4 Configuration Files /etc/gettytab Locked-speed Config Matching-speed Config /etc/ttys Locked-speed Config Matching-speed Config /etc/rc.d/serial

27.4.5 Modem Settings Locked-speed Config Matching-speed Config Checking the Modem's Configuration

27.4.6 Troubleshooting Checking Out the FreeBSD System Try Dialing In

27.5 Dial-out Service

remove reference to BBS?

27.5.1 My Stock Hayes Modem is Not Supported, What Can I Do?

combine this and other subsections into a Troubleshooting section? shouldn't 27.5 be incorporated into PPP section?

27.5.2 How Am I expected to Enter these AT Commands

27.5.3 The @ Sign for the pn Capability Does Not Work!

27.5.4 How Can I Dial a Phone Number on the Command Line?

27.5.5 Do I Have to Type in the bps Rate Every Time I Do That?

27.5.6 I Access a Number of Hosts Through a Terminal Server

27.5.7 Can Tip Try More Than One Line for Each Site?

tip should be formatted as a command

27.5.8 Why Do I Have to Hit Ctrl+P Twice to Send Ctrl+P Once?

27.5.9 Suddenly Everything I Type Is in Upper Case??

27.5.10 How Can I Do File Transfers with tip?

27.5.11 How Can I Run zmodem with tip?

27.6 Setting Up the Serial Console

docs/101271, docs/169544

27.6.1 Introduction

27.6.2 Serial Console Configuration, Terse Version

27.6.3 Serial Console Configuration

27.6.4 Summary

these subsections could be Tables next to their previous? examples Case 1: You Set the Flags to 0x10 for sio0 Case 2: You Set the Flags to 0x30 for sio0

27.6.5 Tips for the Serial Console Setting a Faster Serial Port Speed Using Serial Port Other Than sio0 for the Console Entering the DDB Debugger from the Serial Line Getting a Login Prompt on the Serial Console

27.6.6 Changing Console from the Boot Loader Setting Up the Serial Console Using a Serial Port Other Than sio0 for the Console

27.6.7 Caveats

28 PPP and SLIP


28.1 Synopsis

28.2 Using User PPP

28.2.1 User PPP Assumptions Automatic PPP Configuration PPP and Static IP Addresses PPP and Dynamic IP Addresses Receiving Incoming Calls Which getty? PPP Permissions PPP Shells for Dynamic-IP Users

no hyphen PPP Shells for Static-IP Users

no hyphen Setting Up ppp.conf for Dynamic-IP Users

no hyphen Setting Up ppp.conf for Static-IP Users

no hyphen mgetty and AutoPPP MS Extensions PAP and CHAP Authentication Changing Your ppp Configuration on the Fly Using PPP Network Address Translation Capability Final System Configuration Summary

belongs in Synopsis

28.3 Using Kernel PPP

28.3.1 Setting Up Kernel PPP

version 7 only?

28.3.2 Using pppd as a Client

28.3.3 Using pppd as a Server

28.4 Troubleshooting PPP Connections

28.4.1 Check the Device Nodes

28.4.2 Connecting Manually Debugging

28.5 Using PPP over Ethernet (PPPoE)

needs synopsis, this section should only concentrate on differences and not repeat 28.2.1

28.5.1 Configuring the Kernel


28.5.2 Setting Up ppp.conf

has no description of what is different in ppp.conf

28.5.3 Running ppp


28.5.4 Starting ppp at Boot

is this different? if not, remove

28.5.5 Using a PPPoE Service Tag

28.5.6 PPPoE with a 3Com® HomeConnect® ADSL Modem Dual Link

is this the only modem that does this? if not, needs to be more generalized for modems that do not follow the RFC, assuming any still exist

28.6 Using PPP over ATM (PPPoA)

28.6.1 Using PPPoA with the Alcatel SpeedTouch USB™

remove as this port is marked as broken

28.6.2 Using mpd

port has been renamed to mpd5

28.6.3 Using pptpclient

28.7 Using SLIP

remove as for 7.x only?

28.7.1 Setting Up a SLIP Client Things You Have to Do Only Once Making a SLIP Connection How to Shutdown the Connection Troubleshooting

28.7.2 Setting Up a SLIP Server Prerequisites Quick Overview An Example of a SLIP Server Login Kernel Configuration Sliplogin Configuration

format as file slip.hosts Configuration slip.login Configuration slip.logout Configuration Routing Considerations Static Routes

29 Electronic Mail

29.1 Synopsis

29.2 Using Electronic Mail

29.2.1 The User Program

29.2.2 Mailhost Server Daemon

29.2.3 Email and DNS

29.2.4 Receiving Mail Accessing remote mailboxes using POP and IMAP

capitalization Accessing Local Mailboxes

29.2.5 The Mail Host

29.3 sendmail Configuration

capitalize or format as command

29.3.1 /etc/mail/access

29.3.2 /etc/mail/aliases

29.3.3 /etc/mail/local-host-names

29.3.4 /etc/mail/

29.3.5 /etc/mail/virtusertable

29.4 Changing Your Mail Transfer Agent

29.4.1 Install a New MTA

29.4.2 Disable sendmail

capitalize or format as command

29.4.3 Running Your New MTA on Boot

change to Run ("Configure MTA to Start at Boot" is better)

29.4.4 Replacing sendmail as the System's Default Mailer

change to "Replace", capitalize or format as command

29.4.5 Finishing

remove and incorporate content into section

29.5 Troubleshooting

don't use questions as header titles

29.5.1 Why do I have to use the FQDN for hosts on my site?

29.5.2 sendmail says "mail loops back to myself"

not tagged

29.5.3 How can I run a mail server on a dial-up PPP host?

not tagged, does anyone still do this?

29.5.4 Why do I keep getting "Relayed Denied" errors when sending mail from other hosts?

29.6 Advanced Topics

should be subsection of above

29.6.1 Basic Configuration

29.6.2 Mail for Your Domain

29.7 SMTP with UUCP

does anyone still do this?

29.8 Setting Up to Send Only

29.9 Using Mail with a Dialup Connection

related to 29.5.3?

29.10 SMTP Authentication

29.11 Mail User Agents

related to 29.2.1, should add more info on GUI apps rather than concentrate on cli?

29.11.1 mail

format as command

29.11.2 mutt

format as command?

29.11.3 alpine

29.12 Using fetchmail

format as command

29.13 Using procmail

format as command

30 Network Servers

docs/156187 (add bsnmpd)

30.1 Synopsis

30.2 The inetd “Super-Server”

format as command

30.2.1 Overview

30.2.2 Settings

30.2.3 Command-Line Options

30.2.4 inetd.conf

30.2.5 Security

30.3 Network File System (NFS)

30.3.1 How NFS Works

30.3.2 Configuring NFS

30.3.3 Locking

30.3.4 Practical Uses

30.3.5 Automatic Mounts with amd

format as command

30.3.6 Problems Integrating with Other Systems

30.4 Network Information System (NIS/YP)


30.4.1 What Is It?

30.4.1-30.4.3 should be synopis/introduction

30.4.2 Terms/Processes You Should Know

30.4.3 How Does It Work? Machine Types

30.4.4 Using NIS/YP Planning Choosing a NIS Domain Name Physical Server Requirements NIS Servers Setting Up a NIS Master Server Initializing the NIS Maps Setting up a NIS Slave Server NIS Clients Setting Up a NIS Client

30.4.5 NIS Security

30.4.6 Barring Some Users from Logging On

30.4.7 Using Netgroups

30.4.8 Important Things to Remember

30.4.9 NIS v1 Compatibility

30.4.10 NIS Servers That Are Also NIS Clients

30.4.11 Password Formats

30.5 Automatic Network Configuration (DHCP)

needs Synopsis

30.5.1 What Is DHCP?

30.5.1-30.5.6 could be one section entitled "DHCP Client"

30.5.2 What This Section Covers

30.5.3 How It Works

30.5.4 FreeBSD Integration

30.5.5 Files

30.5.6 Further Reading

30.5.7 Installing and Configuring a DHCP Server What This Section Covers DHCP Server Installation Configuring the DHCP Server Files

30.6 Domain Name System (DNS)

30.6.1 Overview

30.6.2 Terminology

30.6.3 Reasons to Run a Name Server

30.6.4 How It Works

30.6.5 Starting BIND

30.6.6 Configuration Files /etc/namedb/named.conf Zone Files

30.6.7 Caching Name Server

belongs in Synopsis, or needs to be expounded on how to configure one

30.6.8 DNSSEC Recursive DNS Server Configuration Authoritative DNS Server Configuration Automation Using BIND 9.7 or Later

30.6.9 Security

30.6.10 Further Reading

30.7 Apache HTTP Server

30.7.1 Overview

30.7.2 Configuration

30.7.3 Running Apache

30.7.4 Virtual Hosting

30.7.5 Apache Modules mod_ssl Language Bindings

30.7.6 Dynamic Websites Django Ruby on Rails mod_perl2 mod_php

30.8 File Transfer Protocol (FTP)

30.8.1 Overview

30.8.2 Configuration

30.8.3 Maintaining

needs better title

30.9 File and Print Services for Microsoft® Windows Clients (Samba)

30.9.1 Overview

30.9.2 Configuration Using the Samba Web Administration Tool (SWAT) Global Settings Security Settings

30.9.3 Starting Samba

30.10 Clock Synchronization with NTP

30.10.1 Overview

30.10.2 Choosing Appropriate NTP Servers

30.10.3 Configuring Your Machine Basic Configuration General Configuration Controlling Access to Your Server

30.10.4 Running the NTP Server

30.10.5 Using ntpd with a Temporary Internet Connection

format as command

30.10.6 Further Information

30.11 Remote Host Logging with syslogd

30.11.1 Log Server Configuration

30.11.2 Log Client Configuration

30.11.3 Debugging Log Servers

30.11.4 Security Considerations

31 Firewalls

31.1 Introduction

31.2 Firewall Concepts

31.3 Firewall Packages

31.4 The OpenBSD Packet Filter (PF) and ALTQ

31.4.1 Using the PF Loadable Kenrel Modules

31.4.2 PF Kernel Options

31.4.3 Available rc.conf Options

31.4.4 Creating Filtering Rules

use "Filter" instead?

31.4.5 Working with PF

31.4.6 Enabling ALTQ

31.5 The IPFILTER (IPF) Firewall

is IPFILTER all caps?

31.5.1 Enabling IPF

31.5.2 Kernel Options

31.5.3 Available rc.conf Options

31.5.4 IPF

should be lowercase and formatted as a command

31.5.5 IPFSTAT

should be lowercase and formatted as a command

31.5.6 IPMON

should be lowercase and formatted as a command

31.5.7 IPMON Logging

should be lowercase and formatted as a command

31.5.8 The Format of Logged Messages

31.5.9 Building the Rule Script with Symbolic Substitution

31.5.10 IPF Rulesets

31.5.11 Rule Syntax ACTION

should not be all uppercase IN-OUT

should not be all uppercase or hyphenated OPTIONS

should not be all uppercase SELECTION

should not be all uppercase PROTO

should not be all uppercase SRC_ADDR/DST_ADDR

should not be all uppercase PORT

should not be all uppercase TCP_FLAG

should not be all uppercase or with an underscore STATEFUL

should not be all uppercase

31.5.12 Stateful Filtering

31.5.13 Inclusive Ruleset Example

31.5.14 NAT

spell out acronym

31.5.15 IPNAT

needs to be lowercase and formatted as command

31.5.16 IPNAT Rules

needs to be lowercase and formatted as command

31.5.17 How NAT works


31.5.18 Enabling IPNAT

needs to be lowercase and formatted as command

31.5.19 NAT for a Large LAN Assigning Ports to Use Using a Pool of Public Addresses

31.5.20 Port Redirection

31.5.21 FTP and NAT IPNAT Rules

needs to be lowercase and formatted as command IPNAT FTP Filter Rules

needs to be lowercase and formatted as command

31.6 IPFW

docs/116588, docs/143416

31.6.1 Enabling IPFW

31.6.2 Kernel Options

31.6.3 /etc/rc.conf Options

31.6.4 The IPFW Command

needs to be lowercase and formatted as command

31.6.5 IPFW Rulesets Rule Syntax CMD

title makes no sense, text should be moved to RULE_NUMBER

text should be moved to ACTION

no need for all caps Logging Selection Stateful Rule Option Logging Firewall Messages Building a Rule Script Stateful Ruleset An Example Inclusive Ruleset An Example NAT and Stateful Ruleset

32 Advanced Networking


32.1 Synopsis

32.2 Gateways and Routes


32.2.1 An Example

32.2.2 Default Routes

32.2.3 Dual Homed Hosts

needs hyphen

32.2.4 Building a Router

32.2.5 Setting Up Static Routes

replace with Configuring Static Routes Manual Configuration Persistent Configuration

32.2.6 Routing Propagation

32.2.7 Troubleshooting

32.2.8 Multicast Routing

32.3 Wireless Networking


32.3.1 Wireless Networking Basics

32.3.2 Basic Setup Kernel Configuration

title is incorrect, text belongs in 32.3.2

32.3.3 Infrastructure Mode FreeBSD Clients

gratuitous header/title How to Find Access Points Basic Settings Selecting an Access Point Authentication Getting an IP Address with DHCP Static IP Address WPA

spell out acronym WPA-PSK

spell out acronym WPA with EAP-TLS

spell out second acronym WPA with EAP-TTLS

spell out second acronym WPA with EAP-PEAP

spell out second acronym WEP

spell out acronym

32.3.4 Ad-hoc Mode

32.3.5 FreeBSD Host Access Points

add Configuring to title Basic Settings Host-based Access Point Without Authentication or Encryption WPA Host-based Access Point WPA-PSK WEP Host-based Access Point

32.3.6 Using Both Wired and Wireless Connection


32.3.7 Troubleshooting

32.4 Bluetooth

32.4.1 Inroduction

32.4.2 Plugging in the Device

needs better title

32.4.3 Host Controller Interface (HCI)

32.4.4 Logical Link Control and Adaptation Protocol (L2CAP)

32.4.5 RFCOMM Protocol

spell out acronym

32.4.6 Pairing of Devices

32.4.7 Service Discovery Protocol (SDP)

32.4.8 Dial-Up Networking (DUN) and Network Access with PPP (LAN) Profiles

32.4.9 OBEX Object Push (OPUSH) Profile

32.4.10 Serial Port Profile (SPP)

32.4.11 Troubleshooting

don't use question/error as title name A Remote Device Cannot Connect Something is Going Wrong, Can I See What Exactly is Happening?

32.5 Bridging

32.5.1 Introduction

32.5.2 Situations Where Bridging is Appropriate

subsections could be replaced by numbered list Connecting Networks Filtering/Traffic Shaping Firewall Network tap Layer 2 VPN Layer 2 Redundancy

32.5.3 Kernel Configuration

32.5.4 Enabling the Bridge

32.5.5 Firewalling

32.5.6 Spanning Tree

32.5.7 Advanced Bridging Reconstruct Traffic Flows Span Ports Private Interfaces Sticky Interfaces Address Limits SNMP Monitoring

32.6 Link Aggregation and Failover


32.6.1 Introduction

32.6.2 Operating Modes

32.7 Diskless Operation


32.7.1 Background Information

32.7.2 Setup Instructions Configuration Using ISC DHCP Configuration Using BOOTP

uppercase? Preparing a Boot Program with Etherboot Booting with PXE Configuration the TFTP and NFS Servers Building a Diskless Kernel

change Diskless to bootp Preparing the Root Filesystem Using make world to Populate Root Configuring Swap NFS Swap Miscellaneous Issues Running with a Read-only /usr Using a Non-FreeBSD Server

32.8 PXE Booting with an NFS Root File System

32.8.1 Setting Up the chroot Environment for the NFS Root File System

32.8.2 Configuring Memory File Systems Used by /etc/rc.initdiskless

32.8.3 Setting Up the DHCP Server

32.8.4 Configuring the PXE Client and Debugging Connection Problems

32.9 ISDN

is this deprecated?

32.9.1 ISDN Cards

how does one get isdn4bsd?

32.9.2 ISDN Terminal Adapters

32.9.3 Stand-alone ISDN Bridges/Routers

32.10 Network Address Translation


32.10.1 Overview

32.10.2 Setup

32.10.3 Boot Loader Configuration

32.10.4 Kernel Configuration

32.10.5 System Startup Configuration

32.10.6 Port Redirection

32.10.7 Address Redirection

32.11 Parallel Line IP (PLIP)

does anyone still use this?

32.11.1 Creating a Parallel Cable

32.11.2 Setting Up PLIP

32.12 IPv6

docs/99506, docs/121585, docs/146521, docs/162404, docs/170223, docs/172743

32.12.1 Background on IPv6 Addresses

32.12.2 Reading IPv6 Addresses

32.12.3 Getting Connected

32.12.4 DNS in the IPv6 World

32.12.5 Applying the Needed Changes to /etc/rc.conf IPv6 Client Settings IPv6 Router/Gateway Settings IPv6 Tunnel Settings

32.12.6 Router Advertisement and Host Auto Configuration

32.13 Asynchronous Transfer Mode (ATM)

needs a Synopsis and terminology

32.13.1 Configuring Classical IP over ATM (PVCs) Fully Meshed Configurations

32.14 Common Address Redundancy Protocol (CARP)

32.14.1 Using CARP for Server Availability (CARP)

remove (CARP)

V. Appendices

A. Obtaining FreeBSD

belongs before Installation, not at end of book

A.1 CDROM and DVD Publishers

A.1.1 Retail Boxed Products

is this still true?

A.1.2 CD and DVD Sets

A.2 FTP Sites

docs/169191, docs/169454

A.3 BitTorrent

is this still true? if so, how to seed should be added

A.4 Anonymous CVS



A.5 Using CTM


A.5.1 Why Should I Use CTM?

A.5.2 What Do I Need to Use CTM?

A.5.3 Using CTM for the First Time

A.5.4 Using CTM in Your Daily Life

A.5.5 Keeping Your Local Changes

A.5.6 Other Interesting CTM Options

A.5.6.1 Finding Out Exactly What Would Be Touched by an Update

A.5.6.2 Making Backups Before Updating

A.5.6.3 Restricting the Files Touched by an Update

A.5.7 Future Plans for CTM

A.5.8 Miscellaneous Stuff

A.5.9 CTM Mirrors

A.6 Using Subversion


A.6.1 Introduction

A.6.2 Installation

A.6.3 Running Subversion

A.6.4 For More Information

A.6.5 Subversion Sites

A.7 Using CVSup


A.7.1 Introduction

A.7.2 Installation

A.7.3 CVSup Configuration

A.7.3.1 The refuse File

A.7.4 Running CVSup

A.7.5 CVSup File Collections

A.7.6 For More Information

A.7.7 CVSup Sites

A.8 CVS Tags

deprecated, equivalent subversion info needs to be added

A.8.1 Branch Tags

A.8.2 Release Tags

A.9 rsync Sites

capitalize or format as a command

B. Bibliography

B.1 Books & Magazines Specific to FreeBSD

B.2 Users' Guides

could be User

B.3 Administrators' Guides

could be Administrator

B.4 Programmers' Guides

could be Programmer

B.5 Operating System Internals

B.6 Security Reference

B.7 Hardware Reference

B.8 UNIX History

B.9 Magazines and Journals

C. Resources on the Internet

see notes on subsections

C.1 Mailing Lists

will add missing mailing lists once entities corrected; needs to be reviewed fr readability by the intended audience

C.1.1 List Summary

needs better title; tables will look nicer

C.1.2 How to Subscribe

C.1.3 List Charters

C.1.4 Filtering on the Mailing Lists

C.2 Usenet Newsgroups

C.2.1 BSD Specific Newsgroups

ak@ has checked these

C.2.2 Other UNIX Newsgroups of Interest

C.2.3 X Window System

C.3 World Wide Web Servers

C.3.1 Forums, Blogs, and Social Networks

title misleading as we don't have a blog, we have an aggregator; could use more links?

C.3.2 Official Mirrors

C.4 Email Addresses

deprecated; if useful in the future, should be on a wiki page

D. PGP Keys

include just a subset (i.e. security officer) and only fingerprints, not complete keys in printed version--suggest adding a link to this section in mailing list section

D.1 Officers

D.2 Core Team Members

D.3 Developers

FreeBSD Glossary

suggest combining acronyms with spelled out term and definition



PublishedFormats (last edited 2013-10-02 21:45:52 by GavinAtkinson)