OpenBSD

Setting up subversion on OpenBSD

This document is an overview to remind me of the steps involved, not a detailed set of instructions.

Setting up subversion

  1. Setup subversion. (Use pkg_add.)
  2. Create a group for people who need to use subversion.
    E.g. "dev" or "svn"
    Add users to the group.
  3. Create a directory for the repository. Allow read and write permissions to the dev group; the world should have no access.
    Example: /home/svn/
  4. Create the repository and import the files.

Connecting remotely to the repository

The svn+ssh:// URL schema is a convenient way of accessing the repository remotely, provided that active shell accounts are set up on the remote server. It uses ssh to create a temporary svnserve process. You don't need to open any ports for subversion as communications are sent over the ssh port. The svnserve process ends after closing the network connection.

Setting up an OpenBSD 3.2 firewall

Posted June 20th, 2006 in , , , , ,

The Guide to OpenBSD Packet Filtering Firewalls explains:

  • how to boot from a floppy disk and install OpenBSD 3.2 via FTP;
  • how to configure the /etc files using vi (a UNIX text editor);
  • how to edit the pf.conf file and operate it from the command line(using pfctl);
  • what to take into consideration when planning an appropriate firewall
  • policy for a home LAN; and
  • further tweaking your OpenBSD box.

Reducing the need for the root password using group-based security

Posted June 20th, 2006 in , , , , ,

"With proper use of groups, and a bit of scheduling, you don't need to hand out root [password]. In this article, we're going to implement group-based security for managing DNS files. The same techniques can be applied to almost any other section of the system."

Full article: Using Groups to Eliminate Root

Partitioning an OpenBSD disk

Special partitions

  • a: must be created on the root disk and used for the root filesystem (/).
  • b: must be created on the root disk and used as swap space.
  • c: represents the entire disk and must not be altered. (Just ignore it.)

Minimum sizes for a full installation

(root)	60MB
/usr	420MB (no X) or 550MB (with X)
/var	25MB
/tmp	50MB
swap	32MB

Considerations

  • It's a good idea to put user-writeable directories such as /home and /var/www in a separate partition. This helps if you want to set quotas and prevents problems with a user fills a partition.

OpenBSD Installation problems

Problems encountered when installing OpenBSD.

OpenBSD Installation

OpenBSD installation notes.

OpenBSD Bookmarks

Miscellaneous OpenBSD bookmarks

BIND DNS Setup on OpenBSD

These are my notes for setting up a BIND DNS server on OpenBSD. The instructions here work for OpenBSD 3.9.

Syndicate content