×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

OpenBSD 5.4 Released

timothy posted about 6 months ago | from the they're-not-in-it-for-the-money dept.

Operating Systems 102

An anonymous reader writes "The release of OpenBSD 5.4 has been announced. New and notable advancements include new or extended platforms like octeon and beagle, moving VAX to ELF format, improved hardware support including Kernel Mode Setting (KMS), overhauled inteldrm(4), experimental support for fuse(4), reworked checksum handling for network protocols, OpenSMTPD 5.3.3, OpenSSH 6.3, over 7,800 ports, and many other improvements and additions."

cancel ×
This is a preview of your comment

No Comment Title Entered

Anonymous Coward 1 minute ago

No Comment Entered

102 comments

But ... (-1)

Anonymous Coward | about 6 months ago | (#45310591)

But, can it run Linux?

Re:But ... (1)

Anonymous Coward | about 6 months ago | (#45310631)

Wouldn't that be a little unsafe for OpenBSD's standards?

Re:But ... (-1)

kh31d4r (2591021) | about 6 months ago | (#45310709)

no, BSD is dead.

Re:But ... (1)

Anonymous Coward | about 6 months ago | (#45310803)

GNU is dead; BSD will live forever

Re:But ... (5, Informative)

billcarson (2438218) | about 6 months ago | (#45310713)

Why, yes, yes it can. There is linux binary emulation available.

Re:But ... (0)

Anonymous Coward | about 6 months ago | (#45311247)

It is beyond me why anyone would want to run i386 Linux binaries which are the only supported by binary emulation and then only on i386.
It is a security disaster waiting to happen.
If your machine was built in the last decade you should be running amd64.
Just dual-boot and keep the Adobe binaries away from your encrypted OpenBSD partitions dude.

Re:But ... (1)

Anonymous Coward | about 6 months ago | (#45311701)

FreeBSD supports i386 Linux emulation on 64bit

Re:But ... (0)

Anonymous Coward | about 6 months ago | (#45311847)

So now I can run my vulnerable apps on a vulnerable OS. If the emulation layer is enough to fool them. And this is better than just using Linux because? Oh right, you can jail apps now they can't access your video card or your files, that will show them.

Re:But ... (1)

Burz (138833) | about 6 months ago | (#45312087)

So now I can run my vulnerable apps on a vulnerable OS. If the emulation layer is enough to fool them. And this is better than just using Linux because? Oh right, you can jail apps now they can't access your video card or your files, that will show them.

Running apps under a hypervisor in Qubes is safer anyway, and it comes with Fedora. You get (safe) video, but not 3D unless you assign a whole video card to a VM.

Re:But ... (1)

Anonymous Coward | about 6 months ago | (#45313471)

Dual-boot? If malware infects your BIOS, NIC, IPMI, or other device with embedded firmware through Windows, then your other partitions are fscked, whether or not they're encrypted, as soon as you boot them.

Re: But ... (0)

Anonymous Coward | about 6 months ago | (#45322059)

Malware that checks all my file systems for me automatically, even those for other OSes? Sounds awesome, infect my system please!

Yeah...I know...you wanted to reply with "whoosh" so bad, didn't you?

Re:But ... (-1)

Anonymous Coward | about 6 months ago | (#45311057)

Just another monoculture drone fucktard. That's what you are.

OpenBSD Rocks. (5, Informative)

grub (11606) | about 6 months ago | (#45310717)


Rather than slagging OpenBSD, set up a small VM and try it there for a while. It's a fantastic OS, I use it on my gateway/firewall/VPN, other edge-facing devices and a llaptop.

It's a bit minimal but what you get works.

Re:OpenBSD Rocks. (1, Interesting)

jones_supa (887896) | about 6 months ago | (#45310775)

What are the benefits over using Linux?

Re:OpenBSD Rocks. (5, Informative)

jawtheshark (198669) | about 6 months ago | (#45310793)

Look into the syntax of pf, then look into the syntax of iptables. Then look back again. If I can, I damn well avoid having Linux firewalls, and I'm a Linux system administrator.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45312033)

.. If I can, I damn well avoid having Linux firewalls, and I'm a Linux system administrator.

I'd do so too, and did so in my previous IT job where all my firewalls (bar one) were OpenBSD boxes (the odd one out was a FreeBSD box), but I currently have a 'legacy' Shorewall Linux install which 'works just fine' ®, and I'd rather not touch it.

One of these days, however, one of these days...

Re:OpenBSD Rocks. (4, Informative)

gagol (583737) | about 6 months ago | (#45310799)

OpenBSD focus on code stability rather than features, uses encryption everywhere it benefits and consider documentation as critical. Overall, it is very stable and secure.

Re:OpenBSD Rocks. (1, Funny)

Mitchell314 (1576581) | about 6 months ago | (#45311105)

In other words, boring and lame. :p

Re:OpenBSD Rocks. (1)

Teckla (630646) | about 6 months ago | (#45312857)

If you prefer crashy and insecure, you know where to find it.

Re:OpenBSD Rocks. (1)

Anonymous Coward | about 6 months ago | (#45313205)

No one had mentioned Windows until you just brought it up.

Re:OpenBSD Rocks. (1)

BitZtream (692029) | about 6 months ago | (#45310833)

Are you a masochist? If you aren't, just use FreeBSD instead. You'll get roughly the same result, minus the pain and suffering Theo inflicts on others who listen to his rants as well as use his code.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311165)

Are you a masochist? If you aren't, just use FreeBSD instead. You'll get roughly the same result, minus the pain and suffering Linus inflicts on others who listen to his rants as well as use his code.

FTFY

Re:OpenBSD Rocks. (2)

celle (906675) | about 6 months ago | (#45315897)

Are you a masochist? If you aren't, just use open source instead. You'll get roughly the same result, minus the pain and suffering Steve inflicts on others who listen to his rants as well as use his code.

FTFY

PS Steve Ballmer is still at Microsoft and Steve Jobs hasn't been dead that long so most of his decisions are still being used so it works for both Windows and Mac OSX.

Re:OpenBSD Rocks. (5, Informative)

grub (11606) | about 6 months ago | (#45310919)


I'd suggest starting here as a beginning: 9 - Migrating to OpenBSD [openbsd.org]
One thing I find OpenBSD is head and shoulders above other *nix OSs at: the documentation. Virtually every service, binary, config, library, /etc/*, what-have-you has a thorough manpage included. The emphasis on security and "correctness" shows everywhere: pf is fantastic (iptables is a cancer by comparison), the built-in IPSec is great, it's OpenSSH's "home OS", etc.

Everything fits very well together (as is also the case with FreeBSD and NetBSD). All the OpenBSD users could post replies to your question but the only way to see for yourself is to try it out.

Enjoy!

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311151)

You're going to Slashdot to be told what you should do?

Here: http://bit.ly/1aRFdEH

Re:OpenBSD Rocks. (5, Interesting)

Anonymous Coward | about 6 months ago | (#45311177)

To me it is having a UNIX system that just works.
Sound, graphics, networking, documentation. Everything is just damn stable. I can update to the next version with no fear that it will break my system. Every new feature is a well thought and all over improvement on the previous version.
With Linux, it is always chasing a moving target that has many attractive features, but each fighting with each other and against the user. Today my WiFi won't work, tomorrow it will work but my headphones will be mute for no good reason. The day after tomorrow the apt database will get corrupted. Don't get me started on RPM.
I do have to renounce to some features and software that will only work in Linux, but in the end, it fits my needs the best.
As a programmer, I also find that when both systems solve a similar problem, the Linux solution usually feels more hackish and ad-hoc while the OpenBSD one(assuredly often in hindsight) feels like a real improvement.
I do always keep a Linux partition with the latest cool distro(currently Mint) but in the end I spend most of my time on OpenBSD.
As for FreeBSD, it is somewhere in a middle ground between Linux and OpenBSD, but, at least for me, that middle ground feels even less comfortable than either one.

Re:OpenBSD Rocks. (2)

Waffle Iron (339739) | about 6 months ago | (#45311801)

With Linux, it is always chasing a moving target that has many attractive features, but each fighting with each other and against the user.

That's been the continual story of personal computing since the 1970s. *Somebody* has to go through the pain of integrating new capabilities into common use.

Re:OpenBSD Rocks. (1)

VortexCortex (1117377) | about 6 months ago | (#45312845)

Right. I use Debian Stable and OpenBSD. I find that for the most part they're quivalent in the "Damn, they broke shit again" department... Seriously.

Re:OpenBSD Rocks. (1)

Anonymous Coward | about 6 months ago | (#45315043)

Debian Stable is comparable to OpenBSD in that there is a group of people(and that includes users) making sure the changes won't destroy people's systems before rolling out updates. QC, crazy, huh?
Similarities end here.
Debian Stable is effectively dead on arrival. By the time you upgrade to the next version, your software has only been getting back-ported "security" fixes for more than five years. It wouldn't be a bad choice if civilization ends tomorrow and that's the system you are stuck with. But it is hardly optimal.
Debian is also affected by the Linux feeping creaturism(It's not as if they aren't just pulling stuff from sid) and, after half a decade, the shock is much worse. You will have to reconfigure any customization from scratch. Today you were using alsa, X11 and iptables, tomorrow you get to deal with PulseAudio, Wayland and whatever they call that.

Re:OpenBSD Rocks. (2, Informative)

Anonymous Coward | about 6 months ago | (#45314883)

You mean like ASLR, drive encryption, stack canaries, W^X? None of these were invented there but they were common and integrated into OpenBSD long before any Linux.

Re:OpenBSD Rocks. (4, Informative)

cptnapalm (120276) | about 6 months ago | (#45311329)

I have this truly bizarre UltraSparc laptop. The only two operating systems which will support it are Solaris, obviously, and OpenBSD. Solaris was extremely sluggish whereas OpenBSD with Awesome is quite spry.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311505)

V- Hi. I am VAX.
P- And I am a PC.
V- I run OpenBSD-5.5 since 2014-05-12. Uptime 9496 days.
P- I run Ubuntu 14.04 LTS since -NaN. SYSTEM is restarting *NOW*

Re:OpenBSD Rocks. (1)

armanox (826486) | about 6 months ago | (#45315023)

Is it a Tadpole computer? I don't know of too many UltraSparc laptops. I'd consider buying one if they were still available.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311507)

What are the benefits over using Linux?

No cgroups, and hence no systemd

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311711)

Comparing Linux+Userland and BSD is like comparing a treefort and a sky scraper. One is engineered, one is like "hey, bring you friends and start helping!"

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45313971)

And this arrogant, shitfaced, smug and conceited attitude is why *BSD has continually lost more and more users the last few decades. Congratulations Sir, you got it down to a t.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45314981)

And this rough, unwashed, foul-mouthed and shallow attitude is why */Linux has continually gained more and more junk the last few decades. Congratulations Sir, you got it down to a t.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45316165)

Good. Stay away.

Re:OpenBSD Rocks. (1)

eudaemon (320983) | about 6 months ago | (#45312561)

Well you can find out for yourself at the OpenBSD home page, which explains their approach to security: http://www.openbsd.org/security.html [openbsd.org] OpenBSD is definitely an educate yourself then ask questions sort of OS. I'm not slagging on you, just saying it makes more sense for me to post a link than try to recreate the contents of the webpage it goes to. Check it out. Decide for yourself.

Re:OpenBSD Rocks. (1)

jones_supa (887896) | about 6 months ago | (#45312639)

Reading the comments above and reading some material, my impression now is that it is more robust than Linux, but requires more effort to set things up.

Re:OpenBSD Rocks. (1)

drinkypoo (153816) | about 6 months ago | (#45310951)

Last time I used it, it was a very long time ago, and I had to throw it away because the intel NIC driver that I was using (some kind of 10/100 cards) would choke eventually if you had more than 1 in the system, and I had 4.

Now I shall try it again on my olde timey original Atom netbook (Acer Aspire) which I've been putting off installing with anything for lack of anything modern that I wanted to run on it. This is close enough. I ought to have one machine I can kind of trust.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311163)

Last time I used it, it was a very long time ago, and I had to throw it away because the intel NIC driver that I was using (some kind of 10/100 cards) would choke eventually if you had more than 1 in the system, and I had 4.

Hmmm, I'm curious which NIC card that was.

One of my OpenBSD servers has been using multiple NICs for years and has been rock solid:

Broadcom 5750 gigabit
Intel 82571EB dual gigabit
3com 3c905B 10/100

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45314173)

If you use 4 cards in a system you might be missing legacy IO-resources.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311009)

Trolling is a art.

That's an art you mouth breathing motherfucker.

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45311049)

OP's sig proven correct. lulz.

Re:OpenBSD Rocks. (1)

Anonymous Coward | about 6 months ago | (#45311473)

Hahaa! Straight into the trap!

Re:OpenBSD Rocks. (0)

Anonymous Coward | about 6 months ago | (#45312683)

lel. okay lets go back to 4chan guise

Re:OpenBSD Rocks. (1)

ISoldat53 (977164) | about 6 months ago | (#45311845)

Has it changed much since 2003? That's the last time I tried to use it and that's when my manuals are dated. Not a dig, it's just I haven't tried it since.

Re:OpenBSD Rocks. (1)

grub (11606) | about 6 months ago | (#45314193)

They release a new version every 6 months, so your last info is about 20 versions behind...

Re:OpenBSD Rocks. (2)

Burz (138833) | about 6 months ago | (#45312101)

OK. I'll set one up in a Qubes VM... that way the system will stay secure. :D

Linux on my servers, NO WAY. (5, Informative)

eshaw (3418617) | about 6 months ago | (#45311631)

There's only one solution when it comes to my network and servers, that's OpenBSD. It's secure, stable and correct coding making it an easy choice. I run a VPN, Web and redundant Firewall servers and OpenBSD gives me a piece of mind, ensuring it's stability. Stability and security are paramount for my network. PF is the king of firewall rules and iptables is an absolute mess. It's simple folks. If you want a serious OS for internet facing infrastructure, why choose anything else. OpenBSD is the obvious answer!

Re:Linux on my servers, NO WAY. (1)

Burz (138833) | about 6 months ago | (#45312253)

I run a VPN, Web and redundant Firewall servers...

Great. Welcome to 1999!

Re:Linux on my servers, NO WAY. (1)

eshaw (3418617) | about 6 months ago | (#45313161)

Thanks. I've probably been supporting servers before you were born, but thanks anyway juvenile.

Re:Linux on my servers, NO WAY. (1)

dbIII (701233) | about 6 months ago | (#45314749)

Great. Welcome to 1999!

Why not? They have cooler spaceships than we have now.

Re:Linux on my servers, NO WAY. (0)

Anonymous Coward | about 6 months ago | (#45312321)

"piece of mind". Obviously only illiterate morons or masochists would choose OpenBSD over Linux for any serious server duty.

If you want a serious, modern unix-like OS for internet facing infrastructure, there is only one choice, and it isn't OpenBSD, which is pretty much confined to the "toy" or "cutesy" niche.

Re:Linux on my servers, NO WAY. (1)

fisted (2295862) | about 6 months ago | (#45312721)

Dear fanboy, take a look at what ISPs run. No, it's not OpenBSD, but it sure as hell isn't Lunix* either

(*) The losers' unix

Re:Linux on my servers, NO WAY. (1)

Ducho_CWB (900642) | about 6 months ago | (#45313201)

Dear fanboy, take a look at what ISPs run. No, it's not OpenBSD, but it sure as hell isn't Lunix* either

(*) The losers' unix

Windows 2012 R2 LOL Version.

Re:Linux on my servers, NO WAY. (1)

dbIII (701233) | about 6 months ago | (#45314757)

ZFS
You say you are literate, try reading where it is up to on each platform.

Re:Linux on my servers, NO WAY. (0)

Anonymous Coward | about 6 months ago | (#45316315)

So many baseless assertions. It's like you're trolling.

No signatures, just checksums? (1)

Anonymous Coward | about 6 months ago | (#45311691)

From the FAQ:
"The OpenBSD project does not digitally sign releases. The above command only detects accidental damage, not malicious tampering. If the men in black suits are out to get you, they're going to get you."

Seems a bit fatalistic not to provide any verification method at all...

Re:No signatures, just checksums? (1)

Anonymous Coward | about 6 months ago | (#45311849)

The reason is that you should not rely on any binary release. Download the source code. Audit it. Then build and install it from your own copy.

Re:No signatures, just checksums? (0)

Anonymous Coward | about 6 months ago | (#45312457)

The reason is that you should not rely on any binary release. Download the source code. Audit it. Then build and install it from your own copy.

Or buy the cd set from openbsd!

Re:No signatures, just checksums? (2)

eneville (745111) | about 6 months ago | (#45313219)

Or buy the cd set from openbsd!

... and the men in black suits will deliver your post ...

Never mind the features, what are the benefits? (1)

petes_PoV (912422) | about 6 months ago | (#45312031)

Or, to put it another way:

What would I be able to do with a box running this that I couldn't do with <operating system X> for any current, contemporary O/S. Let's not talk about potential uses - but real, live, switch it on, press buttons and do stuff type of uses. Things that no other O/S or box running that O/S can do? What are they?

Re:Never mind the features, what are the benefits? (0)

Anonymous Coward | about 6 months ago | (#45312273)

Or, to put it another way:

What would I be able to do with a box running this that I couldn't do with <operating system X> for any current, contemporary O/S.
Let's not talk about potential uses - but real, live, switch it on, press buttons and do stuff type of uses. Things that no other O/S or box running that O/S can do?What are they?

Well, you could probably type a document while the machine is connected to the internet without the NSA having access to your data...

Re:Never mind the features, what are the benefits? (2)

VortexCortex (1117377) | about 6 months ago | (#45312859)

Jail.

Re:Never mind the features, what are the benefits? (0)

Anonymous Coward | about 6 months ago | (#45313657)

OpenBSD doesn't have jails. They were considered too complex--particularly in their implementation--for too little benefit. The most important characteristic of security is simplicity, and while jails are seemingly simple from user space, they hide a lot of complexity. And if you depend on all that complexity being 100% correct for the security of your application, then you may run into trouble.

That's why OpenBSD is such a delight to administer. They eschew complexity from every angle--kernel, user space libraries, configuration files, etc.
Yes, OpenBSD administration and programming is often very manual and rote, but it's simple, and that usually matters much more, on the whole.

Re:Never mind the features, what are the benefits? (3, Insightful)

Noryungi (70322) | about 6 months ago | (#45314553)

What would I be able to do with a box running this that I couldn't do with <operating system X> for any current, contemporary O/S.
Let's not talk about potential uses - but real, live, switch it on, press buttons and do stuff type of uses. Things that no other O/S or box running that O/S can do? What are they?

One word: pf.

Best. Firewall. Program. Ever.

Running the latest and greatest version of OpenSSH is also interesting.

Re:Never mind the features, what are the benefits? (0)

Anonymous Coward | about 6 months ago | (#45315959)

make world

Re:Never mind the features, what are the benefits? (0)

Anonymous Coward | about 6 months ago | (#45316179)

Nothing. Stick to your leenoks. Stay out of our fora.

New & extended platforms? (1)

unixisc (2429386) | about 6 months ago | (#45322793)

If they are adding new or extended platforms, instead of octeon or beagle, how about adding Itanium support? B'cos I think they have most others covered - SPARC, POWER, MIPS, and anything still surviving

in some ways far ahead of linux (0)

Anonymous Coward | about 6 months ago | (#45312539)

it's really amazing how stable openbsd is. i've deployed it across all my servers and laptops at this point. they do a ton of good work and in some ways i've found them to be way ahead of linux. for example, the Y2038 problem is one they're fixing now and i don't see that happening any time soon with linux. see this article https://lwn.net/Articles/563285/ for more. openbsd is by far the sanest unix out there.... i just can't imagine ever going back to linux.

Re:in some ways far ahead of linux (0)

Anonymous Coward | about 6 months ago | (#45314603)

Who still runs 32-bit servers?

Re: in some ways far ahead of linux (0)

Anonymous Coward | about 6 months ago | (#45315883)

you mean 32-bit embedded not servers. oh, and hundreds of millions of devices out there...

Doesn't work with Virtualbox (0)

Anonymous Coward | about 6 months ago | (#45312549)

Can't try it. Crashes virtualbox on boot.

Re: Doesn't work with Virtualbox (0)

Anonymous Coward | about 6 months ago | (#45312597)

Time to upgrade Vbox camarade. Or fiddle with the VM options (VT-x, etc).

Re:Doesn't work with Virtualbox (0)

Anonymous Coward | about 6 months ago | (#45312865)

Then you are doing it wrong.
I am running OpenBSD 5.4 as well as -current in Virtualbox. No fiddling with settings required.

Re:Doesn't work with Virtualbox (0)

Anonymous Coward | about 6 months ago | (#45314089)

What version? Running AMD64 on virtualbox 4.3 crashes. Just to see if it is a fluke, I tried FreeBSD, PCBSD and NetBSD as well and they are all crashy crashy.

this summary sucks (1)

Anonymous Coward | about 6 months ago | (#45315905)

I don't think most people care about vax moving to elf and fuse is definitely not of any use until at least the next release. for me one of the biggest improvements was in the the rewritten dhcpd/dhclient tools. also some nice incremental performance improvements and lots more posix features added. and as usual the amazing man pages just keep getting better with every release (if that's possible). finally just quoting the number of ports doesn't really give an idea of how current the software collection is. openbsd ports rocks harder than most linux distros by a wide margin which I've always been surprised by since I would have expected linux to be faster moving on that front...

But, no journal?! (-1)

Anonymous Coward | about 6 months ago | (#45323499)

But ...

The EXT2 filesystem is supported, but journaled variants such as EXT3 or EXT4 are not.

I was quite interested up until I read that. Fail. No way am I risking data in a non-journalled filesystem, especially not without the write speed gains of ext4.
http://openbsd.org/faq/faq9.html

Load More Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Sign up for Slashdot Newsletters
Create a Slashdot Account

Loading...