Slashdot Mirror

← Back to Domains

Domain: openbsd.org

Stories and comments across the archive that link to openbsd.org.

Comments · 2,959

  1. OpenBSD is currently developing support by manifest37 · · Score: 1, Redundant · on Sharp Zaurus SL-C3000 Reviewed

    http://www.openbsd.org/zaurus.html

  2. doesn't run just linux ... by Triumph+The+Insult+C · · Score: 1 · on Sharp Zaurus SL-C3000 Reviewed

    Dale Rahn and others are actively porting OpenBSD to this little machine

  3. Why's this in the Linux-Corner? by koi88 · · Score: 3, Interesting · on Sharp Zaurus SL-C3000 Reviewed


    I'm running BSD on my Zaurus, you insensitive clod!

  4. Re:Why don't I use *BSD? by SillyNickName4me · · Score: 1 · on FreeBSD June-December Status Reports

    > I misspoke. OpenBSD doesn't do SMP

    As of version 3.6, it actually does support SMP

  5. Re:Why don't I use *BSD? by someonehasmyname · · Score: 1 · on FreeBSD June-December Status Reports

    OpenBSD does support SMP.

    http://www.openbsd.org/smp.html

  6. Re:What I really want by Saint+Aardvark · · Score: 1 · on Build an Open Source Network Sniffer
    This might do what you want:

    http://openbsd.org/faq/pf/authpf.html

  7. Re:Too damn proprietory by Homology · · Score: 2, Informative · on Curious Blend of VPN, PDA and USB Drive
    And it looks like it wants to more or less shut down the host PC. It's be more interesting if it was accessible via a terminal services, VNC or X window itself.

    Come to think of it, a couple of friends have a Sharp Zaurus and it's SSH-able when it's sitting in its cradle...

    The developers of OpenBSD is porting OpenBSD to Sharp Zaurus

  8. Re:Too damn proprietory by Homology · · Score: 2, Informative · on Curious Blend of VPN, PDA and USB Drive
    And it looks like it wants to more or less shut down the host PC. It's be more interesting if it was accessible via a terminal services, VNC or X window itself.

    Come to think of it, a couple of friends have a Sharp Zaurus and it's SSH-able when it's sitting in its cradle...

    The developers of OpenBSD is porting OpenBSD to Sharp Zaurus

  9. Re:New logo... by MrBoombasticfantasti · · Score: 3, Insightful · on NetBSD Status Report for Oct- Dec '04 Published
    Strictly speaking the NetBSD flag isn't a logo, but an emblem. A proper logo is readable and commonly consists of a brandname in a specific and usually artistic typeface.

    While Tux (as an emblem and/or mascot) is recognized because of gross overexposure in any and all media this is not true of Puffy. Not only does the picture change with every new release (check out the t-shirt page http://www.openbsd.org/tshirts.html) but it isn't quite clear what it stands for if you do not already know.

    I, for one, think the NetBSD flag is quite good. The design is crisp, has upbeat colors and anyway, it's a bloody step forward from that fugly Iwo Jima picture.

  10. Just Greylist! by emil · · Score: 2, Informative · on Spammers' Upend DNS

    OpenBSD's spamd will initially reject all mail from previously unknown sources. It will only permit access to sendmail after an attempt at redelivery. This has brought my spam load down to about zero.

    Unless a spammer using the above trick attempted redelivery (which is unlikely), it would not cause a DNS flood.

    spamd is only one of a great many reasons to consider OpenBSD on your critical servers.

  11. Re:Going to 802.11a by Homology · · Score: 1 · on Cutting Through a Wi-Fi Traffic Jam?
    I don't know the status of 802.11a in Linux right now, but if it's good then I'd recommend going to that. It may cost more, but it's faster, it's seperate from a, and relatively unused even by people with systems that would fully support it otherwise.

    The Atheros cards has HostAP mode (like the Prism chipets). OpenBSD is working on a free driver for these chipset, and 802.11a (AR5210 chipset) is working. There is work in progress for chipsets AR5211 and AR5212, with AR5210 implemented. What OpenBSD does is to take the FreeBSD driver, and replace the binary-only HAL component.

  12. direct download link to Windows fix by Anonymous Coward · · Score: 0 · on Three New Microsoft Bulletins

    ftp://ftp.openbsd.org/pub/OpenBSD/3.6/i386/cd36.is o

  13. Re:Interesting point of view by LurkerXXX · · Score: 2, Insightful · on Security Holes Draw Linux Developers' Ire
    How about having that procedure nicely spelled out on an official website rather than just having to google for it and hoping the article you find has both real and current information? It's not hard. The BSD guys do it.

    The Linux guys failed more on the netiquette than the PaX guys. They failed to put forward a real working contact list. Security guys don't like to trust random results from google. How do you know your sending it to the 'real' security person? I can't put the blame on them for this mess at all. Imho, one should never ever ever fail to provide an easy to find current working contact list for exploits.

  14. Re:linux vs ??? by Homology · · Score: 5, Informative · on Security Holes Draw Linux Developers' Ire
    ok it has some problems that need to be worked out... but what are the alternatives... is this story meant to cause people to say "OMG M$ was right better contact my local sales rep" or is the community slacking???

    OpenBSD has implemented security similar to grsecurity. Note that this is part of OpenBSD operating system, so the user does not need to do anything to use it. Contrast this to grsecurity that is a set of patches against Linux kernel.

    As far as I know, only Gentoo and Mandrake supports grsecurity.

  15. Re:linux vs ??? by Homology · · Score: 5, Informative · on Security Holes Draw Linux Developers' Ire
    ok it has some problems that need to be worked out... but what are the alternatives... is this story meant to cause people to say "OMG M$ was right better contact my local sales rep" or is the community slacking???

    OpenBSD has implemented security similar to grsecurity. Note that this is part of OpenBSD operating system, so the user does not need to do anything to use it. Contrast this to grsecurity that is a set of patches against Linux kernel.

    As far as I know, only Gentoo and Mandrake supports grsecurity.

  16. Re:A worm that deletes everything. by Anonymous Coward · · Score: 1, Funny · on Extremely Critical IE6/SP2 Exploit Found
    Running WinXP SP2 and fully patched system. I run Norton anti-virus, spybot, Ad-aware and now MS Antispyware and enabled autoupdate.

    Checked out Secunia, ran their test and my system was found vulnerable.

    What more should I patch?

    If your system was vulnerable, then you still missed one critical patch to your hard disk partition. You can download it here.
  17. There is a patch all ready to download by Anonymous Coward · · Score: 0 · on Local Root Exploit in Linux 2.4 and 2.6

    at this site.

  18. Re:Ah, I understand now. by Homology · · Score: 4, Informative · on Sun Unilaterally Revokes the FreeBSD Java License
    The SUN Java is NOT under a BSD like license! Of course, OpenBSD will never agree to the terms offered by SUN, so here you must manually fetch the relevant files from the SUN and agree to their obnoxius license. On OpenBSD the port tells you where to download the relevant files as part of installation : Java 1.4_2 Makefile

    My guess is that FreeBSD has to something similar.

  19. Re:Ohh Cmon by Homology · · Score: 1 · on Holland Bans AMD's 'Virus Protection' Campaign
    I can't say I think the NX bit is really that big a deal, it only makes things a little harder when you can't execute code on the stack since a stack overflow lets you return program execution to any address on the system you want. Often a cleverly designed system call or another non-stack user controlled data structure will still allow the attacker to gain control.

    OpenBSD uses the NX bit to implement a memory policy forcing a page to be either writable or executable, but not both. This will make your example exploit much harder to do. On i386 OpenBSD used some other trick to implement this policy, but NX makes it much easier.

    You can check out Theos slides for a description.

  20. Re:Ohh Cmon by Homology · · Score: 1 · on Holland Bans AMD's 'Virus Protection' Campaign
    I can't say I think the NX bit is really that big a deal, it only makes things a little harder when you can't execute code on the stack since a stack overflow lets you return program execution to any address on the system you want. Often a cleverly designed system call or another non-stack user controlled data structure will still allow the attacker to gain control.

    OpenBSD uses the NX bit to implement a memory policy forcing a page to be either writable or executable, but not both. This will make your example exploit much harder to do. On i386 OpenBSD used some other trick to implement this policy, but NX makes it much easier.

    You can check out Theos slides for a description.

  21. Re:Several frustrating points by Anonymous Coward · · Score: 0 · on What's Wrong with Unix?

    chflags

  22. Re:Several frustrating points by Anonymous Coward · · Score: 0 · on What's Wrong with Unix?

    I've been happily using Linux on my home PC for about 4 years, but the filesystem layout has always been an annoyance.

    Try OpenBSD. BSDs in general have a well ordered layout.

  23. Re:Several frustrating points by Anonymous Coward · · Score: 0 · on What's Wrong with Unix?

    I've been happily using Linux on my home PC for about 4 years, but the filesystem layout has always been an annoyance.

    Try OpenBSD. BSDs in general have a well ordered layout.

  24. Was Puff right? by sleighb0y · · Score: 1 · on Is Apache 2.0 Worth the Switch for PHP?

    Entire Lyrics
    MP3
    OGG



    "So once agin' it was right, but then
    The lake went dry, she was gone again!
    Fish started flippin' and floppin' about
    Yellin' "Mercy Puff! It's a doggone drought!"

    So he rolled up-gulch till he hit the lake
    Of Apache fish, they was on the take
    They'd built a dam that was made of rules
    Now Puff was pissed and he lost his cool!


    I'm sick and tired of these goldarn words!
    n' laws n' bureaucratic nerds!
    You're full o' beans n' killin' my town
    and if you's all don't shut er down

    I'll hang a lickin' on every one
    of you sons o' bitchin' greedy scum!
    So he blew the dam, an' he let 'er haul
    Cause water oughta be free for all!"

  25. Was Puff right? by sleighb0y · · Score: 1 · on Is Apache 2.0 Worth the Switch for PHP?

    Entire Lyrics
    MP3
    OGG



    "So once agin' it was right, but then
    The lake went dry, she was gone again!
    Fish started flippin' and floppin' about
    Yellin' "Mercy Puff! It's a doggone drought!"

    So he rolled up-gulch till he hit the lake
    Of Apache fish, they was on the take
    They'd built a dam that was made of rules
    Now Puff was pissed and he lost his cool!


    I'm sick and tired of these goldarn words!
    n' laws n' bureaucratic nerds!
    You're full o' beans n' killin' my town
    and if you's all don't shut er down

    I'll hang a lickin' on every one
    of you sons o' bitchin' greedy scum!
    So he blew the dam, an' he let 'er haul
    Cause water oughta be free for all!"

  26. Was Puff right? by sleighb0y · · Score: 1 · on Is Apache 2.0 Worth the Switch for PHP?

    Entire Lyrics
    MP3
    OGG



    "So once agin' it was right, but then
    The lake went dry, she was gone again!
    Fish started flippin' and floppin' about
    Yellin' "Mercy Puff! It's a doggone drought!"

    So he rolled up-gulch till he hit the lake
    Of Apache fish, they was on the take
    They'd built a dam that was made of rules
    Now Puff was pissed and he lost his cool!


    I'm sick and tired of these goldarn words!
    n' laws n' bureaucratic nerds!
    You're full o' beans n' killin' my town
    and if you's all don't shut er down

    I'll hang a lickin' on every one
    of you sons o' bitchin' greedy scum!
    So he blew the dam, an' he let 'er haul
    Cause water oughta be free for all!"

  27. Re:double standards by Anonymous Coward · · Score: 0 · on PHP Vulnerabilities Announced

    Quantity.

    When was the last time there was a severe bug in PHP? Okay. ASP or ASP.net? Aha -- a wiener is you.

    Furthermore, since PHP is portable, we can run it on operating systems like this one which have built-in overflow protection. Windows doesn't have, and never will have, the same thing (NX is not the same).

  28. Will this work with BSD? by Anonymous Coward · · Score: -1, Troll · on Gigabyte's Dual-GPU Graphics Card

    IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

    Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

    Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

    With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

    Don't be a fag! Join the campaign for more cute open source babes today!

    $Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

  29. Actually... by ^BR · · Score: 1 · on DJB Announces 44 Security Holes In *nix Software

    Passing the course would have been easier for the student had they used OpenBSD to compile the software they audited...

    The mplayer exploit for example is easy to find just by compiling using OpenBSD patched gcc that by default activate the -Wbounded warning that does bound checking on selected functions, read() being one of them. (no magic involved, attributes in includes says wether a parameter to a function is the size for a buffer, hence the include must be adapted for gcc being able to perform the check. gcc then can warn if he knows the size for the buffer (no dynamic alloc I'm afraid) and the if length passed is bigger). See gcc-local, the documentation on gcc extensions introduced by OpenBSD.

    -Wbounded was written by OpenBSD's Anil Madhavapeddy and has not (yet?) been integrated to the gcc trunk, for God knows why reasons...

  30. Actually... by ^BR · · Score: 1 · on DJB Announces 44 Security Holes In *nix Software

    Passing the course would have been easier for the student had they used OpenBSD to compile the software they audited...

    The mplayer exploit for example is easy to find just by compiling using OpenBSD patched gcc that by default activate the -Wbounded warning that does bound checking on selected functions, read() being one of them. (no magic involved, attributes in includes says wether a parameter to a function is the size for a buffer, hence the include must be adapted for gcc being able to perform the check. gcc then can warn if he knows the size for the buffer (no dynamic alloc I'm afraid) and the if length passed is bigger). See gcc-local, the documentation on gcc extensions introduced by OpenBSD.

    -Wbounded was written by OpenBSD's Anil Madhavapeddy and has not (yet?) been integrated to the gcc trunk, for God knows why reasons...

  31. Re:and the moral is: by bani · · Score: 1 · on DJB Announces 44 Security Holes In *nix Software

    i would have thought that was already patently obvious.

    and if tdr ever teaches a class, don't take it either.

  32. No security holes in Ceren! by Anonymous Coward · · Score: -1, Troll · on DJB Announces 44 Security Holes In *nix Software

    IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

    Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

    Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

    With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

    Don't be a fag! Join the campaign for more cute open source babes today!

    $Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

  33. Re:What is wrong with subversion? by kirkjobsluder · · Score: 1 · on OpenBSD Project Will Release OpenCVS

    It's not just devolopers who who would be affected by the changes. Both OpenBSD and FreeBSD use cvsup to distribute updates to users.

  34. Re:A side note by MadPhatTim · · Score: 2, Informative · on Router Wars
    I'll wrap it up here, to say that I really, truly hope someone replies to this, saying "you're wrong", with a link to a live, vibrant, active Free/Open Source software routing project. That would be the best christmas present I could have.

    You're wrong. The OpenBSD developers released OpenBGPD with OpenBSD 3.6 a little while ago. It's already working well and is under active development, so expect even more exciting features and power with the next OpenBSD release in ~5 months. Combined with OpenBSD's PF packet filter and Common Address Redundancy Protocol, this makes OpenBSD the perfect software router. You have powerful packet filtering (including load balancing, QoS traffic shaping, NAT, etc.), BGP route distribution (including optional IPSEC encryption on BGP traffic), and automatic fail-over if you want to set up a pair or cluster of machines to act as a single logical router.

    Merry Christmas.

  35. Re:A side note by MadPhatTim · · Score: 2, Informative · on Router Wars
    I'll wrap it up here, to say that I really, truly hope someone replies to this, saying "you're wrong", with a link to a live, vibrant, active Free/Open Source software routing project. That would be the best christmas present I could have.

    You're wrong. The OpenBSD developers released OpenBGPD with OpenBSD 3.6 a little while ago. It's already working well and is under active development, so expect even more exciting features and power with the next OpenBSD release in ~5 months. Combined with OpenBSD's PF packet filter and Common Address Redundancy Protocol, this makes OpenBSD the perfect software router. You have powerful packet filtering (including load balancing, QoS traffic shaping, NAT, etc.), BGP route distribution (including optional IPSEC encryption on BGP traffic), and automatic fail-over if you want to set up a pair or cluster of machines to act as a single logical router.

    Merry Christmas.

  36. Re:A side note by MadPhatTim · · Score: 2, Informative · on Router Wars
    I'll wrap it up here, to say that I really, truly hope someone replies to this, saying "you're wrong", with a link to a live, vibrant, active Free/Open Source software routing project. That would be the best christmas present I could have.

    You're wrong. The OpenBSD developers released OpenBGPD with OpenBSD 3.6 a little while ago. It's already working well and is under active development, so expect even more exciting features and power with the next OpenBSD release in ~5 months. Combined with OpenBSD's PF packet filter and Common Address Redundancy Protocol, this makes OpenBSD the perfect software router. You have powerful packet filtering (including load balancing, QoS traffic shaping, NAT, etc.), BGP route distribution (including optional IPSEC encryption on BGP traffic), and automatic fail-over if you want to set up a pair or cluster of machines to act as a single logical router.

    Merry Christmas.

  37. Re:You can already do this to your employees... by LittleLebowskiUrbanA · · Score: 1 · on Australian Police Given Power To Use Spyware

    Bet this organization of volunteers will disagree with your vision of the world. Also, try running your product against OpenBSD. Companies like yours make me glad Theo de Raadt's such an asshole who went his own way.

  38. OpenBSD's Authpf by jhealy1024 · · Score: 2, Informative · on Metered HTTP Proxy?

    Have you considered OpenBSD's Authpf? Here's the description and man page.

    It runs on an OpenBSD firewall (which may be a pain for you; not sure what you've got installed already).

    Anyway, what it does is it prevents packets from flowing UNLESS the user has authenticated to the firewall via an ssh session. From there, the packets are tagged as belonging to the user, and you can deal with a particular user's packets as you wish (prioritize, block, redirect, etc).

    If you could apply standard login controls (amount of time, time of day, etc), then you can effectively limit access to the internet with the same granularity...

  39. OpenBSD's Authpf by jhealy1024 · · Score: 2, Informative · on Metered HTTP Proxy?

    Have you considered OpenBSD's Authpf? Here's the description and man page.

    It runs on an OpenBSD firewall (which may be a pain for you; not sure what you've got installed already).

    Anyway, what it does is it prevents packets from flowing UNLESS the user has authenticated to the firewall via an ssh session. From there, the packets are tagged as belonging to the user, and you can deal with a particular user's packets as you wish (prioritize, block, redirect, etc).

    If you could apply standard login controls (amount of time, time of day, etc), then you can effectively limit access to the internet with the same granularity...

  40. Re:Or delay delivery, and check again ... by Triumph+The+Insult+C · · Score: 1 · on De-spamming Your Inbox The Hard Way

    sounds exactly like greylisting in openbsd's spam deferral daemon, spamd

  41. Re:Another approach... by grub · · Score: 1 · on De-spamming Your Inbox The Hard Way


    OpenBSD does something similar with it's pf/spamd combo. Google for "greylisting"

  42. Re:Two things that I don't get by OttoM · · Score: 2, Informative · on New BSD licensed CVS replacement for OpenBSD
    1st: OpenBSD is a developers' system. Having a source code control system is vital to that. Check the OpenBSD goals for details.

    2st: It is a question of priorities. The OpenBSD projecty does not want such an important tool (and a networking tool as well) for their development to be of questionable quality. Other posts provide more info why we think GNU CVS is a security hazard.

  43. Re:Croquet by mwielgosz · · Score: 1 · on Commercial Interest In Open-Source 3D Environment
    What would prevent a new open source OS from gaining widespread acceptance now that running multiple OS's on one machine is common?

    There many Open Source OSs that dont gain widespread acceptance.
    Linux, is still one of them. Although is is more widely accepted than OpenBSD

    ;-)

  44. You have to actually CONFIGURE your *nix? by bani · · Score: 1 · on Computer Forensics

    I'm sure theo de raadt would disagree with you.

    Not that any sensible person thinks theo is correct...

  45. They should use Ceren to promote their PCs... by Anonymous Coward · · Score: -1, Offtopic · on Chinese PC Maker Looks to Buy IBM's PC Business

    IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

    Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

    Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

    With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

    Don't be a fag! Join the campaign for more cute open source babes today!

    $Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

  46. Re:WISP by Homology · · Score: 1 · on Wireless Hotspot Creation?
    Dovecot is a fast POP3/IMAP server that supports Postgresql.

    Greylisting is a very powerful spam reduction technique (with no false positives). This can be done at the firewall, and will consume little resources. It will stop much of the e-mails sendt by viruses that has it's own SMTP engine. Your other spam filtering daemons will have less work to do.

    OpenBSD has a daemon spamd that can do greylisting. Just put an OpenBSD box in front of your mailserver, and you can test it out for yourself.

  47. Re:WISP by Homology · · Score: 1 · on Wireless Hotspot Creation?
    Dovecot is a fast POP3/IMAP server that supports Postgresql.

    Greylisting is a very powerful spam reduction technique (with no false positives). This can be done at the firewall, and will consume little resources. It will stop much of the e-mails sendt by viruses that has it's own SMTP engine. Your other spam filtering daemons will have less work to do.

    OpenBSD has a daemon spamd that can do greylisting. Just put an OpenBSD box in front of your mailserver, and you can test it out for yourself.

  48. No mention of OpenBGPD? by cipher+chort · · Score: 1 · on BusinessWeek On XORP vs. Cisco

    A couple of OSS projects have tried and essentially failed to be stable BGP4 daemons before, but OpenBGPD from the OpenBSD team looks like it's set to succeed where others failed. I understand the FreeBSD team is already including it with their OS and there's supposedly porting work being done to other OSs.

    Given the track record of the other OSS routing projects, I would think administrators would be dubious by now, but with OpenBSD's solid track record OpenBGPD should be a safe choice.

  49. Re:buffer overruns by Type-R · · Score: 3, Informative · on Debian Announces Sarge Will Include GNOME 2.8

    They also gave out strlcpy(3) , but the glibc crew decided to go with the weaker more broken strncpy, making many people reimpliment it themselves. Unfortunatly egos won out over common sense.

  50. Re:An alternative perhaps by farnz · · Score: 1 · on Lycos Anti-Spam Site Compromised [Updated]

    You can do this at a firewall level with OpenBSD's PF. By using passive OS fingerprinting blocking (or redirecting to spamd) mail from Windows hosts is easy. Of course, if the host in question is behind a firewall like PF, which can mangle packets to the point that passive fingerprinting doesn't work, this method fails; hopefully boxes that are firewalled like that aren't spam senders.