Slashdot Mirror
Theo de Raadt gets 2004 FSF Award
Caligari writes "Richard Stallman, presents this year's award to Theo de Raadt.
"For recognition as founder and project leader of the OpenBSD and OpenSSH projects. Theo de Raadt's work has also led to significant contributions to GNU/Linux and other BSD distributions. Of particular note is Theo's work on OpenSSH. Theo's leadership of OpenBSD, his selfless commitment to Free Software and his advancement of network security, were cited by this year's award committee.""
..by refusing the award on the grounds that the GNU license "isn't free enough". ;-)
"Your admirers in the street
Got to hoot and stamp their feet
in the heat from your physique" -King Crimson
That's pretty cool of Stallman really. Showing respect and recognition to the importance of BSD, despite their mutual differences in ideology about what constitutes truly free software.
Imagine a world without the networking Swiss Army knife that is ssh.
OpenBSD is a totally underrated OS too. Even if it is a bit slow, its packet filter actually works.
Looking at past winners, no doubt they all deserve it .. but what about Linus Torvalds?
Is there a reason he didnt get this award?
I don't know whether this is still the policy, but from memory they originally aimed for this award to go to people who hadn't already received other awards for their work on free software. Linus has so wouldn't be eligible.
To summarise the summary of the summary: people are a problem. ~ h2g2
From the beginning, Linus has held the posistion of "eh, whatever" with regards to software freedom. He'll take advantage of it, but he's been very clear on where exactly software freedom is in his list of priorties (which is: below convience).
In contrast Theo has re-written whole parts of his operating system (pf and OpenSSH) for the sake of being able to give away an entirely free-for-any-use operating system.
While Linus has made an invaluble contribution to Open Source, Theo has proven time and time again to be a strong and active advocate for Free Software (with a capital 'F').
"Your admirers in the street
Got to hoot and stamp their feet
in the heat from your physique" -King Crimson
Actually the differences in ideology between the GNU and BSD developers are more in the outlook and means than any other thing. Free software is free software for both camps, and most sane people in both sides shares a common idea of what free software is. The licences, that are generally the main difference between the two, try to achieve an end using different approaches, but all in all both GNU and BSD people are great contributors to a common free software community. The noise many times created is more on the "newly convert" section of each side :).
It's IMHO rather silly to watch the flame wars between the GNU/Linux and *BSD sides when there is so much more that unites us than what divides us. This award make perfect sense. In the end a gnu, a penguin and a daemon can sometimes be noisy neighbourghs, but in the end they stick together to defend their building. Shitty alegory, I know, eh.
cheers,
fsmunoz
JUST KIDDING!
"that's not encryption - it's a new perl script that I'm working on..." - from some Matrix parody
Reading this FAQ entry should shed some light on why linus has never been, and probably will never be up for this award.
"Your admirers in the street
Got to hoot and stamp their feet
in the heat from your physique" -King Crimson
There will be a number of talks this week in Dublin, Ireland from Theo de Raadt, Henning Brauer and Ryan McBride which are open to the public and completely free of charge!
If you had any kind of clue about the way `proactive security' works, you wouldn't write such drivel.
Why is OpenBSD called OpenBSD ? because it was the first BSD to make its CVS tree accessible for everyone. That's right, anyone can subscribe to source-changes and see the commit messages. And anyone can get the sources.
Now, most security fixes are NOT tagged as security fixes. They're tagged as clean-up, or reliability issues, or normal bug-fixes.
Why is this so ?
Quite simply, because those fixes are done while reading the code, NOT in reaction to a security hole.
That's what `proactive security' means. When you find something fishy, you just go and fix it, you don't sit on your fat ass and wait for months until someone finds a way to exploit it.
As a result, OpenBSD is more secure than most other OSes out there. Not because of cool technology like ProPolice or W^X, but simply because of good engineering practices.
OpenBSD doesn't have the latest cool feature. It's never been about that. But it has obsessive-compulsive developers who care about security.
Security is not a plug-in. It's not something you add to a distribution after you've put in all the carelessly designed and dangerous features.
Security is a process.
Security is a state of mind.
Security is a priority: either you put it right there, in front of you, and FIX THINGS when you think they might get broken, or... you will run into actual nasty holes, and make the front page of bugtraq.
Hardly. Theo wouldn't give a free software award to RMS, perhaps, because he considers GPL licensed code to be less than Free, but RMS considers BSD-licensed code to be Free, and he's the one giving the award.
Despite their differing views on what constitutes Free Software, though, both men are largely motivated by ideology. Consider Theo's reaction to the ipf debacle, his response to the XFree86 license change, and his appeal to the community to help fight the good fight against wlan cards that require non-freely redistributable binary firmware to function. This man is every bit as committed to software freedom as RMS is.
Linus, on the other hand, has stated publically on many occasions that he sees nothing wrong with proprietary software, and uses BitKeeper (a proprietary version control solution) to manage the Linux kernel tree (rather than say, CVS or Subversion) because, in his words, "it's better".
Without passing judgement, it is very clear that Linus values convenience above principle. This is part of the reason so many Slashbots like him: he is, in their minds, "refreshingly" a-political.
Whatever their differences, RMS and Theo are both idealistic. They are primarily motivated by their desire for Freedom, not because they want to produce the best system ever (although that may be true as well).
To me, RMS giving TdR this award is absolutely appropriate, and while I didn't expect it, I'm very pleased. I would be very surprised if Linus were named, and to be honest, I would be a little disappointed.
Not that I have anything against Linus, mind you -- he's a brilliant guy -- but at the core, he's an engineer, and so awarding him for his commitment to the ideology of Free Software would go rather against the grain, imho.
Back then, there was no anonymous cvs access to the sources. You had to be a part of NetBSD inner circle to get access to the development sources.
All that was free was the released version. There was some amount of political control of information.
Reread the exchange between Theo and the other members of NetBSD-core. One persistent complaint from Theo is that he could no longer easily work on the sparc port, because he did not have access to not yet released code.
Let's put aside any re-definition of freedom by the FSF, OSI and whatever group of the month is running this show.
No, this is not free development. Theo was not free to see what was going on in NetBSD in a technical sense. He had lost control. And the people in netbsd-core used that power to try and get Theo to promise he would change his behavior.
Whatever you might think of Theo's attitude (yes, he can be a complete fucker sometimes), that's not freedom, by any sense of the world.
Now, look at the world today. All BSDs have open cvs trees. I think that would have happened, eventually, but I'm 100% certain Theo's decision to make sure OpenBSD CVS tree would be totally open to public scrutiny at all times has a HUGE role to play in that change.
I've been personally involved with all these technologies. In my shop, we run two OpenBSD firewalls, one on each available broadband service. Our automated build system is based on SCons, and our scripts make heavy use of rsync internally. Our embedded surveillance project runs Linux which we compile in a chroot build environment along the lines of scratchbox (but scratchbox didn't exist when we started). We also have an ARM7 microcontroller in our product running on top of the GNU tools compilation environment, with some structural similarities to eCos/Redboot. Have I missed anyone?
I have a coworker here educated at the U. of Calgary (where I grew up myself) who knows (but does not enjoy) Theo through overlapping social circles. We had a short debate just a few weeks ago over a spicy Sichuan lunch special about where the boundaries between competence and personality belong. My coworker suggested "couldn't he accomplish as much without pissing people off?" I countered, "for someone with a knack for pissing people off, he retains some of the smartest out there within his circle. How does he do that?" There's a line I once read in Drucker that I've taken to heart "you're not in business to win friends". For me, the bottom line is that Theo delivers, and I admire the end results of his zealous rigour (regardless of where one might choose to draw the line between those qualities).
Before I became involved in this shop, I studied computational linguistics, which brought me into contact with just about everything in the area from which rsync originated. I was depressed that Tridge had to lose the award he deserves as much (well, almost as much, although it pains me to say it).
I've read all the benchmarks over the past year that show how OpenBSD is as slow as a senile dog. Whatever. For the purpose we employ those boxes, we've never had an iota of concern over performance level except for the negotiation phase on https. Guess what? Once Via/IBM finally coughs up the C7 Esther, OpenBSD running on a steroid enhanced 486 will crush the most expensive present day Pentium IV on our most essential performance metric.
The odd thing about OpenBSD, which many people never manage to assimilate, is that you have to look at that project through a very narrow gun turret to realize just how much they accomplish by entirely ignoring the whingings from everyone else.
It's an odd day in my personal universe to see RMS pat Theo on the back. I guess it takes one to know one after all.
You can't get hold of the propietary, extended code for windows networking to fix the operatability problem without NDA etc. You can only guess the BSD code up to the moment of forking. After the fork point, the code has been tweaked and closed and used to build a system that tries to lock you in forever after. That's the kind of danger the GPL protects you against.
If Microsoft does not use the code, they invent their own protocol. When Microsoft uses BSD code as a basis, they are at least easier to guess or work around. How long has it taken the people working on Samba to under all of the SMB protocol? Many years at least. Even Stallman has said the BSD license is good for standards.
BTW, the network stack in Windows has not been based on the BSD code for years.
The restriction of GPL protects the coders in the long run.
Protects coders from what? For example, when Microsoft embraces and extends a protocol (i.e., Kerberos, DNS, DHCP), they have no need for the source. They break the protocol. The GPL nor any other open source license would have power against that. You would need a patent (yuck).
The freedom of BSD can restrict the coders in the long run.
This is never true. I never need to use a proprietary vesion of open source. Which version of Kerberos do you use? With BSD-licensed code, I have very few restrictions placed upon me as a coder. Fewer than using GPL-licensed code.