OpenBSD Turns 25 With a New Release (openbsd.org) 28
ArchieBunker writes: The OpenBSD project has turned 25 years old and is celebrating this with release 6.8.
Avoid strange women and temporary variables.
Slashdot (Score:5, Insightful)
Finally!
THIS is news! THIS is stuff that matters!
Re: (Score:3)
Re: (Score:2)
Hmmm (Score:3, Funny)
Can someone let us know what Netcraft has to say about this?
Only two remote holes in the default install... (Score:5, Informative)
Only two remote holes in the default install, in 25 years. Not a bad effort.
Serious question... (Score:2)
Re: (Score:3)
I've only just gotten into BSD with FreeNAS. I like the ideas of Jails over VMs or containers, after getting used to them, they seem much simpler with less overhead. BSD seems to put some things in different places than *nix, but that's just a matter of getting used to it.
There's a lot less hand-holding, which I'm finding as liberating as switching from a TI-89 to an HP 35s; sure there's more work up front, but I'm better for it.
As far as relevant? I hope so.
Re: (Score:2)
There's a lot less hand-holding, which I'm finding as liberating as switching from a TI-89 to an HP 35s; sure there's more work up front, but I'm better for it.
I fail to see how. You could do the same stuff with Linux with less hand-holding if you simply didn't look for a hand to hold. Or you could breeze through that stuff in Linux with the hand-holding, and apply your effort to something else that isn't so well-explored. Then not only would you better yourself, but you might also better the world.
Re: (Score:2)
For me yes, people like different things.
This is like the argument of why Linux has thousands of distros. So I will ask you: "Why does Linux need thousands of distros ?" Or better yet, why do we need many models of autos when 1 would be enough
Re:Serious question... (Score:5, Informative)
Yes, they are still relevant, but the saying goes, "if you don't know why you'd use BSD instead of Linux, it's probably not for you." The BSDs are used by some organizations to diversify their stack so that a Linux vulnerability doesn't affect every server they have. They also tend to be "cleaner" than Linux because the OS is developed and released as a whole instead of with the GNU/Linux split.
FreeBSD is what I would call the "main" BSD. It probably has the best software support of the 3.
IIRC correctly, NetBSD has a blazing fast network stack, and the best hardware support of the 3.
OpenBSD is hardcore about security. They'll do anything to increase the OS's security, and some of their ideas have made their way into Linux. The OpenBSD devs are also known for speaking truth to power.
Some of the above statements may be inaccurate, but I'll be corrected.
OpenBSD gets a security advantage by.. (Score:5, Insightful)
However, this all falls apart the moment you want a system thatâ(TM)s rapidly extendable beyond its originally planned purpose. For that you need something built upon a highly compatible technology stack. Otherwise, if you want to add new-n-shiny to OpenBSD, it very much has to align with their ever changing codebase which is deliberately kept brutally minimal.
Which begs the question:
Should we have more hardware and strive to keep it all energy-efficient, simple, well maintained and repairable for a long time?
Or, should we keep redeploying more and more powerful hardware and keep adding layers upon layers of code while using virtualisation and containers to segment things?
OpenBSD fits best with the tradition of the former, where you can feasibly keep dedicated servers running for a decade or more, without replacing the CPU, RAM or the like until it breaks. This keeps the running code lean and reduces the surface area of attack greatly at the cost of more physical hardware running long-term.
Realistically, OpenBSD security is inferior to GNU/Linux the moment one needs to run a whole bunch of stuff on one box. This is because Linux has the ability to restrict what each and every process can do in a very granular way, while OpenBSD canâ(TM)t. They used to have systrace for this (which was awesome) but then they dumped it the moment they realised theyâ(TM)d need proper in-kernel policy to go alongside in-kernel hooks to make it all secure. Pledge() is pretty cool though and is actually implemented across the codebase, unlike how Linux uses seccomp (by comparison).
Re: (Score:2)
It's also "realistic" to realize that many situations do NOT change that much.
Business is full of places that don't change their needs from year to year. I worked in Waterworks.
There's this thing called "management" that is generally concerned with change; they don't have much to do when everything is just ticking along. (They don't like such work and push it downwards.) So "management" often comes up with bright new ideas to reorganize and pile new work onto parts of the business that are working well.
B
Re: Serious question... (Score:2)
Re: (Score:1)
Re: Serious question... (Score:1)
FreeBSD is still part of the foundation of OS X I assume.
Possibly because of license differences.
Did at least one Playstation use a BSD base too?
Re: (Score:1)
Yup. The PS4 runs a modified FreeBSD 9.0
Re: (Score:2)
There's no issue with licensing with FreeBSD. FreeBSD is licensed under the modified BSD license (modified which is GPL compatible as the standard BSD license has an advertising clause that makes it against the GPL).
OS X is not FreeBSD. It consists of a Mach based kernel, with FreeBSD providing the personality to the OS. So Mach provides the lowlevel kernel compone
Re: (Score:1)
I meant OS X using FreeBSD because of the BSD license rather than being "infected" with GPL.
Some don't want to be forced into open source and licenses.
Upgraded test sys (Score:4, Informative)
I just finished upgrading my test system. Extremely Easy, rebooting took longer than the upgrade. Rest of the systems will be over the weekend
congratulation on another great release and happy 25th
Re: (Score:1)
First impression as a complete BSD noob (Score:5, Interesting)
We'll see how it handles as a secondary machine.
Re: (Score:2)
echo nameserver 1.1.1.1 >
echo inet 192.168.1.6 255.255.255.0 >
echo 192.168.1.1 >
reboot (or sh