openbsd.org · Domains · Slashdot Mirror

Re:Buffer checks by metlin · 2004-09-17 17:23 · Score: 5, Insightful · on XP SP2 Can Slow Down Business Apps

...but I'm pretty sure the reason SP2 isn't vulnerable to that GDI+ JPEG exploit is that they recompiled GDI+ with buffer checks.

Correct me if I'm wrong, but shouldn't this have been done right in the beginning itself?

If I were writing any commercial grade code, especially stuff that I know that people would take advantage of, I would sure as hell make sure that I had all my buffer checks in place.

I've heard so much about the programming practices at Microsoft and what not - and yet, ironically, these things keep cropping up so damn bloody often while some operating systems coded by a bunch of loosely connected hackers are way more robust and stable.
Hmm, makes one wonder.

(Heh, funnily OpenBSD site says - Only one remote hole in the default install, in more than 8 years! - I guess it does say a lot).

I do not understand, I would have thought that despite all the shit that MS gets for writing bad code, they would make sure that their code is largely buffer checked. Now, when you have to release stuff from outside to patch up for those, you would obviously be wasting a lot more cycles than if you had done so in the beginning, and well.

Sheesh. They do not do a good job of making software and cause you inconvenience, then they release something to make up for it, and that causes you even more inconvenience.

Hah.

Oh really? by karniv0re · 2004-09-17 03:48 · Score: 1, Redundant · on Open Source Security: Still A Myth

Ahem...

And closed-source? by Anonymous Coward · 2004-09-17 03:31 · Score: 5, Interesting · on Open Source Security: Still A Myth

Sure most people aren't looking at security in open source in a structued way, but some people are. Plus, open source can still be better if nobody is looking at closed source security at all. I know where I work, security defects become fodder for amusement at meetings, rather than seious issues to fix.

No I won't say where I work, but it's not MS.

I have one word for you by spif · 2004-09-17 03:21 · Score: 4, Informative · on Open Source Security: Still A Myth

OpenBSD.

Developers! Developers! Developers! Developers!

Re:Perhaps is the user base of those versions? by Anonymous Coward · 2004-09-16 02:07 · Score: 1, Informative · on Windows Fails 8% of the Time

My OpenBSD mail server had it's 4th birthday of uptime on September 3. It's an older kernel but the one remote hole (ssh) was patched and the daemon restarted without a reboot.

Re:We have that already by Flower · 2004-09-15 11:21 · Score: 2, Funny · on Ubuntu Linux Preview Released

You most certainly must mean this one?

You're such a kidder :)

Re:If you need a secure system... by HSpirit · 2004-09-15 00:24 · Score: 2, Informative · on Debian Hardened Aims For Security

I agree entirely with this. Before jumping on the bandwagon, read here for a synopsis of what a secure *nix operating system is about.

If you need a secure system... by Anonymous Coward · 2004-09-14 20:27 · Score: 3, Insightful · on Debian Hardened Aims For Security

...just use OpenBSD, where security is not a patch or an afterthought.

It might surprise some linux fanbois, but other OSs are better suited than their beloved linux for certain tasks.

SCO would win the case if they hired Ceren... by Anonymous Coward · 2004-09-14 08:03 · Score: -1, Offtopic · on SCO Files for Stay of Execution

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

I only take my routers three ways... by sleighb0y · 2004-09-14 04:55 · Score: 3, Informative · on 3com to Compete with Cisco

Purchased

Free

Secure

Any combination of the above three.

Re:Standards == Monopoly?? by EvilAlien · 2004-09-13 04:01 · Score: 4, Informative · on IETF Decides On SPF / Sender-ID issue

Sure... just ask Cisco and OpenBSD. OpenBSD developed CARP to address Cisco's aggression against an IETF standard which they believe to overlap with their HSRP patent.

3.5: "CARP License" and "Redundancy must be free":

The IETF community proposed work in this direction in the late 90's, however in 1997 Cisco informed them that they believed some of Cisco's patents covered the proposed IETF VRRP (Virtual Router Redundancy Protocol); on March 20, 1998 they went further and specifically named their HSRP "Hot Standby Router Protocol" patent. Reputedly, they were upset that IETF had not simply adopted the flawed HSRP protocol as the standard solution for this problem. Despite this legal pressure, the IETF community forged ahead and published VRRP as a standard even though there was a patent in the space. Why? There was much deliberation at all levels of the IETF, and unfortunately for all of us the politicians within eventually decided to allow patented technology in standards -- as long as the patented technology is licensed under RAND (Reasonable And Non Discriminatory) terms. As free software programmers, we therefore find ourselves in the position that these RAND standards must not be implemented by us, and we must deviate from the standard. We find all this rather Unreasonable and Discriminatory and we *will* design competing protocols. Some standards organization, eh?
Due to some HSRP flaws fixed by VRRP and for compatibility with the (HSRP-licensed) VRRP implementations of their competitors, Cisco in recent times has largely abandoned HSRP and now relies on VRRP instead -- a protocol designed for and by the community, but for which they claim patent rights.
On August 7 2002, after many communications, Robert Barr (Cisco's lawyer) firmly informed the OpenBSD community that Cisco would defend its patents for VRRP implementations -- meaning basically that it was impossible for a free software group to produce a truly free implementation of the IETF standard protocol. Perhaps this is because Cisco and Alcatel are currently engaged in a pair of patent lawsuits; a small piece of which is Cisco attempting to use the HSRP patent against Alcatel for their use of VRRP. Some IETF working group members took note of our complaints, however an attempt in April 2003 to have the IETF abandon the use of patented technology failed to "reach consensus" in the IETF.
A few years ago, the W3C, who designs our web protocols, tried to move to a RAND policy as well (primarily because of pressure from Microsoft and Apple), but the community outrage was so overpowering that they backed down. Some standards groups use this policy, while others avoid it -- the one differentiation being the amount of corporate participation. In the IETF, the pro-RAND agents work for AT&T, Alcatel, IBM, Cisco, Microsoft, and other large companies. Since IETF is an open forum, they can blend in as the populace, and vote just like all others, except against the community.
Translation: In failing to "reach consensus", the companies who benefit from RAND won, and the community lost again.

Re:Windows Logo by Anonymous Coward · 2004-09-12 09:59 · Score: 0 · on Home Defense, Geek Style?

That will show that you don't care about security.
You better can take Puffy, then they surely know they have to deal with a security geek.

Re:not difficult to spot at all by Homology · 2004-09-12 07:33 · Score: 4, Informative · on Mountain Biking Helps Squash Bugs

The OpenBSD developers does not fool themselves into thinking that they don't make mistakes. Several of the techniques they use, like privilege revocation and privilege separation is to lessen the impact of programming mistakes, including their own. Theo de Raadt recently gave a talk on Exploit Mitigation Techniques

As for not using C, I've read that Theo de Raadt likes the compiler and language that is used in Plan 9. Can't use it due to license problems, though.

Re:The kind they have in Hawaii by dramaley · 2004-09-09 15:40 · Score: 1 · on Best Training in Linux Administration?

Another system with really good documentation is OpenBSD. It is also fairly minimal, so figuring out how the system works should be relatively easy. It may be easier to get a copy of OpenBSD (you just have to download the first disk or CD image and then do an ftp install) than Solaris.

Re:The kind they have in Hawaii by dramaley · 2004-09-09 15:40 · Score: 1 · on Best Training in Linux Administration?

Another system with really good documentation is OpenBSD. It is also fairly minimal, so figuring out how the system works should be relatively easy. It may be easier to get a copy of OpenBSD (you just have to download the first disk or CD image and then do an ftp install) than Solaris.

Re:The kind they have in Hawaii by dramaley · 2004-09-09 15:40 · Score: 1 · on Best Training in Linux Administration?

Another system with really good documentation is OpenBSD. It is also fairly minimal, so figuring out how the system works should be relatively easy. It may be easier to get a copy of OpenBSD (you just have to download the first disk or CD image and then do an ftp install) than Solaris.

Re:The Utility of Firewalls by Homology · 2004-09-09 10:18 · Score: 1 · on Network Security Assessment

We need fundamental advances in creating robust, secure, and self-recovering software

Perhaps the devolopment process of OpenBSD might give you a hint.

Re:The Utility of Firewalls by Homology · 2004-09-09 10:18 · Score: 1 · on Network Security Assessment

We need fundamental advances in creating robust, secure, and self-recovering software

Perhaps the devolopment process of OpenBSD might give you a hint.

Re:too much freedom? by Sloppy · 2004-09-08 08:17 · Score: 1 · on Unsung Heroes of Open Source Software?

I guess that rules out the OpenBSD team too.

Ceren wins award for hottest geek babe! by Anonymous Coward · 2004-09-05 06:52 · Score: -1, Offtopic · on 2004 Hugo Awards Presented at Noreascon

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Re:Sounds great by torstenvl · 2004-09-05 06:27 · Score: 1 · on What's New in the FreeBSD Network Stack

Nothing to back them up, eh?

Fact: OpenBSD has had one, count it, one remote hole in the default install in *eight years*. See http://www.openbsd.org/

Fact: Linux is a kernel, not a complete system, so without some more community-building and standardizing and code merging to come up with a base system universal to the distributions, there's no way Linux -- as opposed to individual vendors thereof -- can ever have a secure default install of a useable system.

Fact: Many people in the industry regard OpenBSD as the most secure OS generally available. This only indirectly supports the point, but nevertheless lends credibility thereto. See http://www.onlamp.com/pub/a/bsd/2000/08/08/OpenBSD .html and http://rootprompt.org/article.php3?article=832

No lies here: Ceren RULES! by Anonymous Coward · 2004-09-03 08:31 · Score: -1, Offtopic · on Automated DMCA Notices Still Full of Lies

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

The best body... by Anonymous Coward · 2004-09-03 07:46 · Score: -1, Troll · on Body and Brains of Gamers Probed

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Re:Hoody Hoo! by jazman_777 · 2004-09-02 07:39 · Score: 1 · on Apache Rejects Sender ID

But how much bashing does, for example, Cisco get around here despite their market position in networking gear?

Not enough. Just read about OpenBSD and CARP and how it was developed to go around a Cisco Patent that is also an IETF "standard".

Umm. by Anonymous Coward · 2004-09-01 07:31 · Score: 5, Interesting · on Hardening Apache

OpenBSD's Apache has a diff of 3 or 4 thousand lines over "stock" Apache. Why not just use that?

Re:I doubt it... by name773 · 2004-08-31 14:21 · Score: 1 · on Is Tableau The Next Google?

you might like the 3.5 song from openbsd, located here

Re:*BSD is dying by Anonymous Coward · 2004-08-29 07:39 · Score: 1, Informative · on FreeBSD 5.3-BETA2 available

Good News Everyone!
Turns out that *BSD is stronger than ever!
According to an Inernetnews article, Netcraft has confirmed that *BSD has "dramatically increased its market penetration over the last year."
There has been a steady increase in *BSD developers over the past decade.
There are currently 307 FreeBSD developers as of the 2004 core team election.
You can read more about FreeBSD here

If you would like to try out a BSD, you can download: FreeBSD, OpenBSD, NetBSD, or DragonflyBSD
Enjoy!

Re:Exploit announced: Allows root login to corpses by uberTr011 · 2004-08-28 12:34 · Score: -1, Redundant · on OpenBSD Vulnerabilty

Shut up retard. You may have noticed that the article was for OpenBSD not FreeBSD. You're cut+paste troll is for FreeBSD. Even if you were talking about OpenBSD, why did they patch the OS then? Cuz it's still under active development, that's why. In fact, OpenBSD 3.6 is due Nov 1st. FreeBSD 5.3 will be out a few weeks. DragonFly BSD released 1.0 one month ago.

BSD is dying my ass.

Re:OpenBSD is dying by uberTr011 · 2004-08-28 12:29 · Score: -1 · on OpenBSD Vulnerabilty

Shut up retard. You may have noticed that the article was for OpenBSD not FreeBSD. You're cut+paste troll is for FreeBSD. Even if you were talking about OpenBSD, why did they patch the OS then? Cuz it's still under active development, that's why. In fact, OpenBSD 3.6 is due Nov 1st. FreeBSD 5.3 will be out a few weeks. DragonFly BSD released 1.0 one month ago.

BSD is dying my ass.

Ceren wins beautiful geek chick prize... by Anonymous Coward · 2004-08-28 00:31 · Score: -1, Flamebait · on Space Elevator Prizes Proposed

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Re:Best quote from the book: by falsifian · 2004-08-27 17:47 · Score: 1 · on Tao of Security Monitoring

OpenBSD is a particular flavour of BSD that is famous for its security. Mac OS X does indeed run on top of a a flavour of BSD, but the post was referring to OpenBSD in particular, which is probably the most secure flavour of BSD there is.

(No, Windows doesn't get brownie points for using BSD's TCP/IP stack.)

Examining hot geek babes... by Anonymous Coward · 2004-08-27 04:31 · Score: -1, Troll · on Examining the Treo 650 Smartphone

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Should have picked Ceren... by Anonymous Coward · 2004-08-26 23:50 · Score: -1, Offtopic · on MIT Names First Female President

IMPORTANT UPDATE: Please show your support for Ceren in this poll of Geek Babes!

Is it any wonder people think Linux users are a bunch of flaming homosexuals when its fronted by obviously gay losers like these?! BSD has a mascot who leaves us in no doubt that this is the OS for real men! If Linux had more hot chicks and gorgeous babes then maybe it would be able to compete with BSD! Hell this girl should be a model!

Linux is a joke as long as it continues to lack sexy girls like her! I mean just look at this girl! Doesn't she excite you? I know this little hottie puts me in need of a cold shower! This guy looks like he is about to cream his pants standing next to such a fox. As you can see, no man can resist this sexy little minx. Don't you wish the guy in this pic was you? Are you telling me you wouldn't like to get your hands on this ass?! Wouldn't this just make your Christmas?! Yes doctor, this uber babe definitely gets my pulse racing! Oh how I envy the lucky girl in this shot! Linux has nothing that can possibly compete. Come on, you must admit she is better than an overweight penguin or a gay looking goat! Wouldn't this be more liklely to influence your choice of OS?

With sexy chicks like the lovely Ceren you could have people queuing up to buy open source products. Could you really refuse to buy a copy of BSD if she told you to? Personally I know I would give my right arm to get this close to such a divine beauty!

Don't be a fag! Join the campaign for more cute open source babes today!

$Id: ceren.html,v 9.0 2004/08/01 16:01:34 ceren_rocks Exp $

Re:FreeBSD is dying by Anonymous Coward · 2004-08-26 11:46 · Score: 3, Informative · on FreeBSD 5.3 Beta1

Good News Everyone!
Turns out that *BSD is stronger than ever!
According to an Inernetnews article, Netcraft has confirmed that *BSD has "dramatically increased its market penetration over the last year."
There has been a steady increase in *BSD developers over the past decade.
There are currently 307 FreeBSD developers as of the 2004 core team election.
You can read more about FreeBSD here

If you would like to try out a BSD, you can download: FreeBSD, OpenBSD, NetBSD, or DragonflyBSD
Enjoy!

Re:mmmm cores by iNiTiUM · 2004-08-26 10:26 · Score: 5, Informative · on Dual Caches for Dual-core Chips

Sure you can
Oh you want one for the AMD64?
How about these?

Re:Here's how it probably works by Santana · 2004-08-24 07:37 · Score: 1 · on Revolutionary Spam Firewall Developed