Slashdot Mirror

It's no real surprize that people want to get rid of it. If not for Linux we'd have a choice of two OS (Windows or OSX)

Really? What happened to all the other free alternatives?

I'm getting a bit tired of Linux fanatics who think the OS world is limited to Windows, OS X and Linux.

--
Glass, t0tal pwnag3

So if we combine the triangle of Net,Freee,Open to get some sort of Uber-BSD-Megasor, what does it make it? BSDzilla? I guess it would be like Voltron but once all the BSD's unite they all shout RTFM. Episodes include obscure topics like "the bikeshed" and "Theo's rapcore adventure"

About 16 months ago, I'd say. When 3.4 came out

I'm fairly certain the ability to "scrub" tcp packets to prevent naive timestamp analysis has been done for serveral revisions (maybe as long ago as 3.3). See the PF Howto for scrub for more details.

However it does let someone say "This person has randomised their timestamps in a cryptographically aware manner". This in and of itself is information.

Lets start a pool as to when pf has a countermeasure.

My entry is two days from now.

Hmm... typical Sun employee.

Sun would get my respect with they were using an standard license.

Until then... no thanks, I rather use the real free alternatives than to help Sun minimize development costs using the FOSS community.

The OpenBSD license is even shorter :

Below is an example license to be used for new code in OpenBSD,
modeled after the ISC license.

It is important to specify the year of the copyright. Additional years
should be separated by a comma, e.g.
Copyright (c) 2003, 2004

If you add extra text to the body of the license, be careful not to
add further restrictions.

/*
* Copyright (c) CCYY YOUR NAME HERE <user@your.dom.ain>
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/

I'm sure someone has already pointed this out...
"Only one remote hole in the default install, in more than 8 years!"
openbsd.org

While that wasn't a serious post (or at least I hope not), I'll try and offer a true argument in this vein:

Hula. YOu know it. You love it. It's installed on your PC right now. Did you audit the code? No. Did you install it as someone other than root? No.

You have it sitting there, since it's not packaged yet, as a daemon, which is running as root, in /usr.

Totally safe!

(Before we go further, this is true of any software package. Hula's just been popular lately and thus helps to underline the point more clearly. I do not believe Hula is evil spyware, nor that anyone involve with it is now, nor has been, a member of the communist party.)

Except if it where spyware it could have wrote over who-knows-what and now is sending each shell command and bit of network activity to whomever. And it's root. So we've now a root server running on port 80 which has not been audited. Thank God sendmail taught us all our lesson, right?

Linux is no safer than any other OS at the moment. Hell, if we look at the fact that strlcat/cpy have been turned down for inclusion multiple times to the GNU libc because it would be "slower" when preventing a buffer vuln, if anything it's getting worse, and will continue down that slope.

It's as if we've forgotten all we know, and we're ignoring those who try to remind us.

Isn't hearing him sing not enough?

song

And I want to thank him for his other contributions, as it has made me some good cash, installing BSD boxes in front of Windows email servers with packet filtering!

If you haven't already, thank him by making a monetary donation or a hardware donation.

And I want to thank him for his other contributions, as it has made me some good cash, installing BSD boxes in front of Windows email servers with packet filtering!

If you haven't already, thank him by making a monetary donation or a hardware donation.

I have watched misc at openbsd.org for several years and I have never seen Theo personally abuse someone unless it is deserved. Obviously you are only telling YOUR side of the story.

Ummmm. If you look at the OpenBSD Events Page you'll notice that regarding FOSDEM in Brussels, "Theo de Raadt will also be present at this event, though not presenting a talk." No need to speculate, he was there personally to recieve the award.

## TH

There will be a number of talks this week in Dublin, Ireland from Theo de Raadt, Henning Brauer and Ryan McBride which are open to the public and completely free of charge!

Hopefully, this will mean a lot more people buying one of these and using something like this, this, this, this or this!

Seriously. Why on Earth are people still putting up with these MS fuckers when Mac OSX and Apple hardware is so damn nice? I like a mix of Sun and Apple gear. The thought of actually deciding on MS just makes me shudder. And MS just keeps giving me more and more reason to hate them and the shit they peddle.

But will the technical details of this be available for OSS or will it be like OpenBSD's experience with Intel's cryptographic hardware?

Probably the same five who spool logs to another sever as well as write-only tape and run everything in chroot I suspect.

Nah, those guys switched to OpenBSD.

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Microsoft calls for password replacement because of "precomputed hash tables"? This very amusing, because it is pretty much only Microsoft who is vulnerable to these attacks. Why? they store only the hash of the password. Because there is a (nearly) one-to-one correspondance between password and hash, attackers can build up tables of precomputed hashes and use these to directly look up the passwords.

Everybody else mixes random salt bytes into passwords prior to hashing. Unix was doing this over 20 years ago. Modern systems use long (16+ character) salts that make precomputed hash tables infeasible for many years to come.

Some platforms use a better system still, that makes it more difficult for password guessers now and well into the future.

The only intrinsic problem with passwords is that people choose dumb ones, but again this can easily be fixed with a little technology

Heh, recommending a security tool that OpenBSD removed because the Ethereal team does not care about security

Mark it as BROKEN:

Right during 3.5, it had more than
a dozen remote holes being fixed, that we shipped with. Weeks later
things have not improved, and there continue to be problems reported
to bugtraq, and respective band-aids - but it is clear the ethereal
team does not care about security, as new protocols get added, and
nothing gets done about the many more holes that exist.

Just because something is open source does not imply that it's secure.

NetBSD is currently not an option for the Zaurus. It's either Linux or a very experimental port of OpenBSD.

If a feature is not considered stable on OpenBSD, it's not included in the release. Just because OpenBSD releases twice a year does not imply that the include features considered to be unstable.

It's one of the most secure operating systems in the world. Compare the NetBSD 1.6.2 security patch list to the OpenBSD 3.5 security patch list.

If one want to compare OpenBSD 3.5 Security Advisories and NetBSD 1.6.2 Security Patches one should take into consideration that most of these security patches are for thirdparty applications. Both OpenBSD and NetBSD uses cvs, thus share the similar problems (at least until OpenCVS is completed). This goes for many other The base install of NetBSD differs and with OpenBSD the larger one as well, thus security patches must differ. Just comparing number of security patches, whithout regard what those security patches are based upon, is not very fruitful for determine which OS is more secure. Besides, there are more to security than number of patches issued.

OpenBSD. At least, they only require a security patch approximately once every eight years.

The expression of the facts in a particular grouping can be copyrighted.

OpenBSD is FOSS, but you can't make ISOs of the official CDs and sell them because Theo holds copyright of the particular way the CD is laid out. You can make your own CDs/ISOs, with the same data, but not just copy his image.

The OpenBSD project does not make the ISO images used to master the official CDs available for download. The reason is simply that we would like you to buy the CD sets, helping fund ongoing OpenBSD development. The official OpenBSD CD-ROM layout is copyright Theo de Raadt. Theo does not permit people to redistribute images of the official OpenBSD CDs. As an incentive for people to buy the CD set, some extras are included in the package as well (artwork, stickers etc).

Note that only the CD layout is copyrighted, OpenBSD itself is free. Nothing precludes someone else from downloading OpenBSD and making their own CD. If for some reason you want to download a CD image, try searching the mailing list archives for possible sources. Of course, any OpenBSD ISO images available on the Internet either violate Theo de Raadt's copyright or are not official images. The source of an unofficial image may or may not be trustworthy; it is up to you to determine this for yourself.

http://www.openbsd.org/faq/faq3.html#ISO

OpenBSD's spamd can be configured to protect any sort of RFC822 MTA running on any platform, and it will put an end to spam. I hear that Postgrey does pretty well too.

If you are willing to live with a 5 minute delay in email from a previously unknown sender, then why torture yourselves any further?

And this will almost for sure overwrite some config files.

If the upgrades would be the way I like, I wouldn't have to UNINSTALL applicaction packages before doing an upgrade, as this page suggests. I wouldn't have to add system users by hand.

To upgrade a Debian system to a next release, all I have to do is modify ONE config file, do

apt-get update

apt-get dist-upgrade

This is the userland I'm talking of, not firefox.

BSD way of doing things is fine as long you have one machine to take care of. If you have a server farm to upgrade, good luck.

And yes, I did manage BSD servers for a living. Now I wouldn't touch them with a four meter pole.

Debian is obsolete.

I know I should not feed the trolls, but I can inform you that Xfce works very well on OpenBSD, and so does KDE. If only Firefox could render Slashdot properly, but that is not an OpenBSD problem ;-)

Foget linux, go for http://openbsd.org/ It has the best man pages and documentation I've seen. OpenBSD man pages have even helped me out of linux issues...

Some would disagree.

I don't find Linux to be very secure, either.

Aside from the fact that there are no references to back up any of the claims that this McGrath fellow is making (I'd even settle for a research firm that was paid-off by Microsoft!), the 'author' of this article wrote a grand total of FIVE sentences. All five of those sentences paraphrase something else that McGrath says. The rest of the article simply quotes McGrath straight.

There's no discussion of the points, no consideration of other factors, and as far as I can tell, no fact-checking. There is simply no journalism happening here. I know I can simply move on, but it irritates me to know that some CIO out there (probably mine) will take this all in without a second-thought.

The shortcomings of the Windows OS are OBVIOUS to anyone who has to admin these systems in a real production environment, and even more apparent to those of us who have the pleasure of also running other systems. Just imagine what Windows might be like if they spent half of their propaganda budget on fixing the freaking software.

...seriously though, I find no reason to move away from NetBSD...also, I used Slackware before to switching over to NetBSD.

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Check out openbsd.org, and the geographical map they show of their devleopers, India does not figure.
c) Even after so many years there is no true Linux Distribution from India, neither have we got any production Linux distribution in regional languages. If you know one then that is only some guys final year project now lying in dust.
d) How much contribution has been made by Indians to Open Source here. GNU India
2003
Ramanraj K (Chennai) - Rs 1,026
2004
Deeproot Linux (Banglore) - Rs 15,000
Atul Metha (Delhi) - Rs 10,000
Vimal (Kochi) - Rs. 500
For those not from India you just need to divide it by 45 to convert it to US Dollars. For lazy guys it's just $590 for TWO years.

b.t.w. slashdot does support links [0]

I've not used it personally, but OpenBSD has only just released an SMP kernel with it's most recent (v3.6) stable release, so it's still somewhat of an unknown.... http://www.openbsd.org/i386.html#hardware

However, Apache isn't auditted. DHCP isn't auditted. The FTP server, I'm fairly sure isn't auditted.

However, Apache isn't auditted. DHCP isn't auditted. The FTP server, I'm fairly sure isn't auditted.

However, Apache isn't auditted. DHCP isn't auditted. The FTP server, I'm fairly sure isn't auditted.

I'd suggest *starting* with OpenBSD (or NetBSD though I've got no personal experience myself) and later trying a FreeBSD install. If you've been on Linux for 6 years and have run HP/UX I'd have to say you're qualified to run one of the less candy coated BSD's to get yourself integrated into the "whole BSD 'thang." DragonFly will be cool (someday) but I can't suggest it for someone new to BSD. Same with Darwin.

OpenBSD would be great to learn on as it will definately push you into the documentation and get you used to some of the conventions used (slices v. partitions, startup scripts, etc.). I'd suggest you use an older or spare computer if you've got extra or can pick one up cheap. You could also just set aside space on those 80 gigs you've got. READ UP ON PARTITIONING, USE OF LARGE DRIVES, ETC. BEFORE YOU START ANYTHING!

Once you get some OpenBSD under your belt, put a box in service at your network connection (right behind you cable/DSL connection?) and learn to setup pf (packet filter - built in). Experiment with AltQ and get yourself a good firewall/NAT in place (junk the Linksys). Not too much trouble and the docs at OpenBSD - pf are quite good. Here you could experiment with adding a web server or MTA (if you don't have tons of boxen to keep your "real" services in some kind of dedicated DMZ). My home OpenBSD box forwards BitTorrent, Freenet, VNC and SSH to a variety of machines in my house. I also prioitize packets in the following order: 1st to tcp_ack_out, Vonage telephone, ssh_interactive, everything else, freenet, and finally ssh_bulk. Keeps my phone line crisp and prevents freenet from destroying my ssh sessions' latency. You can do this with other products but I've had a good time (and have learned quite a bit) constructing my /etc/pf.conf file. (Yes. I've got a life otherwise :)

Then build youself a FreeBSD box. This should be cake. 5.x should install without a problem for you and you've got access to all the ports you could ever imagine. Your experience with OpenBSD will help you understand some of the differences you'll encounter. Makes a great desktop. OpenBSD will work fine as a desktop machine but I've never done it. Same for NetBSD I suppose. Give it a whirl. I'm sure you'll learn a ton and be quite happy with whatever you decide.

Don't short yourself on learning OpenBSD. It is awesome, security aware and has some wonderful features (need encrypted swap case the feds might knock down your door at any minute? check.). It may just serve all your needs and knowing it is surely going to be useful to either yourself or others in the future. Use it for utility and the ability to sleep at night with your data behind it. (still better go with RSA keys on sshd though). Check out http://undeadly.org/

Don't short yourself either on checking out FreeBSD. I moved from Linux to "the beast" some 5 years ago and haven't looked back since. The 4.10 machine I use everyday has been up 168 days as of today. I had at shutdown the machine previous to that due to a scheduled power outage. It sits fully exposed on an unprotected IP and runs user apps, a web server and mail. Not a single problem in years. FreeBSD has certainly served me (and some clients of mine) well.

If you're a system developer or like playing with things at the driver level or experimenting with new code, new systems or want to put your toaster on the network, don't deny yourself a NetBSD 2.x install. Wonderful features at the leading edge. Very capable and I hope to get some more experience with it myself one day.

Learn OpenBSD. You won't regret it.

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Like OpenBSD, right?

And if you follow the development you'll note

FreeBSD's advantages are thinning out fast

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

installation instructions

The Zaurus port is very new, and not yet finished. For instance, X11 is on the TODO list.

More info about the Zaurus port here.

installation instructions