Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenBSD 3.3 Released

Posted by timothy on from the darpa-funding-be-damned dept.

An anonymous reader writes "OpenBSD 3.3 was released today, with many new features, including integration of the ProPolice stack protection technology, W^X ('write xor X') on sparc, alpha and hppa, privilege separated XFree86 and an incredible number of enhancements and stability improvements to the packet filter, pf, including address pools for reverse NAT/load balancing, ALTQ integration for network conditioning, and anchors/tables/spamd for spam tar-pitting. Information on the release can be found here and download sites are listed here. (Also, here's a handy way to speed up your DSL connection - prioritizing empty TCP ACKs and ToS low-delay traffic with OpenBSD 3.3's pf.)"

14 of 347 comments (clear)

  1. If Microsoft wants to steal... by mfifer · · Score: 4, Funny

    ...from someone *besides* Apple, OpenBSD is the bank they should look at!

    Aside from maybe the esoteric trusted OSes (i.e. Trusted Solaris), is there really another "mainstream" OS people can just rely on for security?

    Hell, Bill G oughtta just start waving $$$ in front of Theo and company until they all say "OK, that will do" and join MS to show them Redmond boys the Right Way (TM) to lock down an OS*!!!

    * of course the Office team would no doubt open right back up any holes the new security-conscious OS team closed down...

  2. Argh! by LooseChanj · · Score: 3, Funny

    I'm not done d/l'ing it yet! And it was slow *before* it got /.'ed!

    --
    Mix the failings of Usenet with the shortcomings of the World Wide Web and the result is slashdot.
  3. Only slashdot... by Bearded+Pear+Shaped · · Score: 3, Funny

    the packet filter, pf, including address pools for reverse NAT/load balancing, ALTQ integration for network conditioning, and anchors/tables/spamd for spam tar-pitting.

    Oh WOW!
    My prayers for the packet filter, pf, including address pools for reverse NAT/load balancing, ALTQ integration for network conditioning, and anchors/tables/spamd for spam tar-pitting have been answered!

    Thanks OpenBSD! Thanks for the World!!

    --
    Who are y oo ?
  4. Re:and still no SMP =( by Anonymous Coward · · Score: 2, Funny

    Yes. They've wasted so much time on useless security features that they're forgotten to make a functional operating system.

  5. Ahh damn by ehintz · · Score: 4, Funny

    I was quietly downloading the packages, and then you had to send the /. hoards after it. Now their bandwidth is shot to hell. I mean, I'm all for sharing, but I wanna get my copy before I start sharing... ;-)

    --
    ehintz
  6. *BSD is Dying by thanjee · · Score: 4, Funny

    *BSD is dying to announce that it has once again improved that which was already considered perfect.

    Way to go!

    --
    Saying your OS is the best because more people use it is like saying MacDonalds make the best food
  7. does *nix not allow self-modifying code? by Trepidity · · Score: 3, Funny

    That was all the fun of DOS assembler programming...

    --
    10 PRINT CHR$(205.5+RND(1)); : GOTO 10
  8. But is it ... by Billly+Gates · · Score: 1, Funny

    ..secure as Windows. Thats what I want to know.

    --
    http://saveie6.com/
  9. Re:OpenBSD = Coordinated Innovation by Anonymous Coward · · Score: 3, Funny

    the graphical xf86cfg is the single most confusing application ever developed to help you. I prefer hand editing /etc/X11/XF86Config over it.

  10. Re:Linux traffich shaper here... by Anonymous Coward · · Score: 1, Funny

    What about a Windows solution for traffic shaping?

  11. Re:Getting 0wn3d by Alioth · · Score: 2, Funny

    ...and remember, every local root hole is almost certainly remote rootable too.

    It's a good job I stopped the Linux =2.4.19 ptrace kmod local root hole, or I'd have been rooted on Sunday morning (see my journal).

    Ironically, the skript kiddie hasn't been too careful, and he has left the PHP shell unpassworded and unprotected on his system. Running a uname -a through it shows that he's running a vulnerable kernel. I now face a terrible internal struggle - do I play ethical and just email abuse@chello.nl again with more evidence if his system still hasn't been pulled in a week's time, or shall I do a Simonly-BOFH trick to him as payback? Maybe like modify his bindshell so that instead of starting a shell on the target machine, it connects to a bindshell on his machine so he just roots his own box when he tries to hack his next victim :-)

    --
    Oolite: Elite-like game. For Mac, Linux and Windows
  12. Re:Getting 0wn3d by Dark+Lord+Seth · · Score: 3, Funny
    do I play ethical and just email abuse@chello.nl again

    Speaking as a Chello.nl subscriber: Don't even bother. They let their members violate every little bit from the EULA, including the running of webservers, FTP servers, IRC server, other servers, NAT gateways, etcetera. And I'm talking from personal experience here ;)

    --
    Hate me!
  13. Re:High bandwidth whoring by dohcvtec · · Score: 4, Funny

    How about "FTPing Releases" right in the middle of the front page? How hard was that? I can't believe you are able to grasp the concept of OpenBSD, develop the initiative to install it, and realize that mirrors are a good idea (not to mention you are apparently a college student) yet you cant even read a simple web page.

    --
    -- Never hit a man with glasses. Hit him with a baseball bat.
  14. Re:Linux traffich shaper here... by iggymanz · · Score: 2, Funny

    There's things like this They must be better than Linux and *BSD based solutions, because they cost alot and need more admin time!