OpenBSD 2.9 Preorders Available

dj_flux writes: "OpenBSD is now taking preorders for v2.9. New features include a significant improvement in filesystem speed and enhancements in documentation. The release will be begin shipping on June 1."

Woohoo!

[NetJunkie]

Mine is already ordered. Everyone should take some time and check out OpenBSD. Excellent product. Secure and functional, and the default install doesn't install 2GB worth of junk.

It just keeps getting better

[chris88]

Not to take away from any of the other BSD's, but OpenBSD is continuing to break new ground. With the advancements in the filesystem (some of which I don't believe are in any other BSD yet), and some honest efforts to get good SMP going, it honestly does just keep getting better.

I'll make a point to order enough CD's for me and my Linux friends.

Re:It just keeps getting better

[bugg]

The new dirpref algorithm is in FreeBSD-CURRENT for testing. It was there only a couple days after it was committed to OpenBSD.

As for SMP, the original poster was referring to efforts to get good SMP support (OpenBSD SMP is basically nonexistant today) - but I do believe that's false, as TDR has said that it's a very low priority to him. And I haven't heard of anyone else attempting to implement it.

Re:It just keeps getting better

[lightfoot+jim]

Well, it's OpenBSD. Theo has been fond of pointing out how other software frequently focuses on adding in the newest, greatest feature while OpenBSD is more concerned with perfecting what they have first. If you like to play with new and bleeding edge technology, OpenBSD is probably not as good a choice as Mandrake linux or in some cases even a Win98 box. On the other hand, if you need a system which has been scrutinized for any type of programming bugs, OpenBSD would be the better choice.

Re:It just keeps getting better

[chris88]

I know Theo probably couldn't care less, but recently there's been a few people running around talking about SMP on misc@ and smp@ which is a considerably more activity than usual. I just hope it keeps going. All I can offer is hardware.

Wow...

[methodic]

This seems like the greatest release of OpenBSD thus far. Im certainately glad to see the Alpha port back, and it's great to see OpenBSD _finally_ including new software. I know sometimes including the latest and greatest isn't exactly in the vein of OpenBSD, but it's still nice to see them shipping X4.0.3. I still can't believe the filesystem improvements. This is by far the best release yet!

---------------

Re:Interesting marketing

[methodic]

Except that none of the developers ever said they are security gurus. Most of them don't even know how to craft an exploit. One of the most important goals to the OpenBSD project, is correctness, which includes writing code.

If you think about it, 95% of the exploits out there exploit the same thing over and over again... buffer overflows, format strings, etc. The person to blame is the programmer for creating sloppy code and using functions that do not perform bounds checking. When the OpenBSD team 'audits' their code, they don't go looking for exploitable code, they just go looking for programming errors (bugs). A side effect of such scrutiny is code that is more 'secure'.

Not to mention the project is based in Canada, which allows for the exportation of some awesome crypto.

Remember, a system is as secure as it's weakest link. OpenBSD is far from perfect, it's just a lot better than most of the stuff out there.

---------------

Re:Interesting marketing

[QuantumG]

very true. However I hardly think it is fair to assign blame to the programmer. This stuff is open source after all. The programmer didn't have to write anything, be thankful that he/she put in any effort at all. Fix the code, not the blame.

Re:Interesting marketing

[Shanep]

How do you know most of them cannot craft exploits? Even if they claim they either don't or can't, does'nt necessarily reflect what they like to do when nobody is watching.

The proof is in the pudding. Most people that "can" craft exploits, cannot do so for OpenBSD it would seem.

"Far from perfect", what can be perfect in a World that embraces ill thought out standards? "Better than most", then what would you say is the best if it is only better than most?

It's an OS that does'nt just adhere to very strict programming protocol and it's not just an OS with strong crypto tacked on to give a warm fuzzy feeling either. It has those along with other, real security features added on, a feature that allows logs that not even root can modify/delete?, without being in single user mode and thus actually being logged in locally to the machine.

Perhaps, TDR and the gang could'nt be bothered hacking crap systems because building a system that does'nt suck is so much more fulfilling. I think their Script Kitty kinda shows that they want to be a group that is above all that.

4 years without a remote exploit in the default install, speaks volumes.

Re:Interesting marketing

[methodic]

How do you know most of them cannot craft exploits?
Because one of the developers came right out and said it in an article.

Even if they claim they either don't or can't, does'nt necessarily reflect what they like to do when nobody is watching.
What the fsck are you talking about.

"Far from perfect", what.. [snip] ..only better than most?
*sigh* You obviously missed the point. Far from perfect as in nothing in this fucking universe is perfect. And what is the best? IMHO, OpenBSD... something being the "best" is just a matter of someones opinion.

Perhaps, TDR and the gang.. [snip] ..that is above all that.
Honestly, what was the point of that rant... you had no point and drew no conclusion. It's like you were argueing with yourself.

Your post gave me a headache... I award you no points, and may God have mercy on your soul.

---------------

Re:Interesting marketing

[Shanep]

Sorry if I misinterpreted your post. Of course I don't beleive anything can be truely perfect. But you say OpenBSD is far from perfect, which sounds a bit extreme when the assumption is that you are speaking about the OS comparatively.

My point here is, that if it is obvious that "nothing in this fucking universe is perfect", then what was the point in stating that OBSD is far from perfect?

Being the best is just a perception? Well, for many people, this may be their "reality". Assuming they base their opinions on assumption, marketing hype, someone elses opinions, etc. But from where I stand, the best tool for the job is, the best tool for the job. Regardless of whether it actually ends up being chosen as the best tool. Many mistakes are made because people think they know what is best, but that does'nt make it the best.

Can you point me to that article? Was he speaking for himself or "most of" the core group? I really doubt that these guys can build, audit and fix OBSD source code so quickly when holes arise, without knowing how to actually make an exploit for their own code. Especially in light of their success in avoiding many holes before they become exploitable.

The [snip] point? I rekon they're more than just anal programmers, they know a bit about network security. Could they write an exploit that overflows a broken buffer with code that will rm -rf /.? Yeah, I rekon they could, if they could be bothered.

Hope your headache is gone... I don't want any points, I don't beleive in any God and my soul is happy enough.

This is not a competition for me, my questions are real questions and I am happy to have my statements corrected if I am wrong. I could'nt care less about Karma.

Windoze R00Lz!!!!

[BastardOpFromHell]

Don't use OpenBSD, the security sucks!!! It's the most insecure piece of crap I've ever seen. If you want real security, go with Windows 95, 98, or Me. That's REAL security! I mean, come on, who needs password protection? So far, it's been 2 WHOLE HOURS since I've been 0wNeD!! Beat THAT OpenBSD!!!

Oh boy, I just got an email... it says open this attachment; it's a picture of Anna Kornikova!!! Gotta go!!!