Slashdot Mirror
Theo De Raadt Says FreeBSD Is Just Catching Up On Security
An anonymous reader writes "The OpenBSD project has no reason to follow the steps taken by FreeBSD with regard to hardware-based cryptography because it has already been doing this for a decade, according to Theo de Raadt. 'FreeBSD has caught up to what OpenBSD has been doing for over 10 years,' the OpenBSD founder told iTWire. 'I see nothing new in their changes. Basically, it is 10 years of FreeBSD stupidity. They don't know a thing about security. They even ignore relevant research in all fields, not just from us, but from everyone.'"
...only OpenBSD would catch up in every OTHER category...
to write your ipsec, thats the definition of security.
Good old Theo De Raadt.
Half human, half cunt.
"De Raadt has been criticized for having a somewhat abrasive personality..."
“He’s not deformed, he’s just drunk!”
you're doing it wrong.
Anons need not reply. Questions end with a question mark.
As usual:
- Theo is a complete asshole, but also quite correct about most things. OpenBSD is rather behind the
times in general, but very good at what it does do. And their stance on BSD license and making BSD tools is great.
- FreeBSD really is stupid about some things.
Let's take for instance their complete refusal to implement any strong security in their distribution chain.
You can't verify their ISO's or packages back to their source in any way. Their repo is ancient svn, not
git or monotone, so they have no signable hashes in their repos. There's no deterministic builds. etc.
And when you bring it up, they just handwave about process and workflow as reasons to continue
doing the same. FreeBSD is pretty damn good as an OS, but their standing on these things is BULLSHIT.
Stay classy, Theo!
Always the humble one, Theo!
Stay off his lawn!
he is still a troll. I guess he is just upset that FreeBSD gets used more for secure applications more than OpenBSD. An awful lot of security and crypto work has come out of members of the FreeBSD community.
"To those who are overly cautious, everything is impossible. "
The lot is cast into the lap, but its every decision is from the LORD.
God says, "do_you_get_a_cookie I_quit Venus application bring_it_on
how's_the_weather."
I don't know why people downvote you. We should just use your posts as a form of high entropy communication and use it for cryptography.
No one can predict what you will say....
...Why should I care? Where in the world is serious stuff being done on any of these platforms? Just asking...
You know, the internet and stuff.
aaa.... everywhere? just cause you are living under a rock, doesnt mean that everybody else is. dunno what os you're using right now, but chances are pretty high you're using a tool/technology/library developed by one of these bsd's.
windows - shitton of tools are taken verbatim from freebsd (network related)
mac - is a freebsd 5 clone, with improvements made to it (plus a ui) and backported from the main release. they have on payroll a fair few of the freebsd folks.
all of them (linux included): anything security related, that's openbsd. when they dont take from openbsd they do it wrong and they have holes.
...Why should I care? Where in the world is serious stuff being done on any of these platforms? Just asking...
When it comes to security, De Raadt is like House
So I guess it matters if you care about security. Then again, since we don't really use secure software or systems, that point is kind of moot.
yeah, i know, right?! who cares about openssh and the likes.
It's the fucking NSA, man, they can't even intercept comments here without screwing up the site! Oh, I wonder just how many NSA man hours are wasted moderating every single one of my comments...
You can't handle the truth.
If you don't know, then the rest of us would prefer you stay away. Our professional-to-fanboy ratio is fairly high, especially compared to Linux and Windows, and we'd like to keep it that way.
You may want to pose that question to Netflix. They account for about 1/3 of the traffic on the internet and all that traffic is served from FreeBSD servers.
Also, Mac OS X is essentially a fork of FreeBSD.
The OS on all Juniper equipment is a modified version of FreeBSD.
The Playstation 3 and 4 OS are both modified FreeBSD.
Plus more.
You'd think /. would at least be able to auto-reject recurring spam posts that are 100% identical.
(though I do have to admit beta.slashdot.org is pretty awful...)
How the fuck is it spam? There's no commercial content in it. The only thing that may be slightly interpreted as "commercial" in nature is perhaps the continued existence of /. as a site that gets any visitors. But that's a real stretch.
Besides, the message is 100% valid and correct regardless of whether it has or has not been posted before. Hell, it's a damn good message, and one we need to hear more and more often if /. has any hope of not becoming the next Digg.
A new 10x faster network stack is coming to Linux via FreeBSD, enjoy your 10gb routing speeds with a 1ghz cpu and in user mode, not kernel. Nginx, that's BSD, Varnish, that's BSD. Actually, most OS research is done on FreeBSD, then ported to Linux. Anecdotally, several large datacenters are claiming they're seeing a rise in BSD services and VMs and some major customers with millions invested, switching to BSD from Linux.
One corp claimed to have over 10,000 VMs and paid RedHat for enterprise support for those VMs with a 5 year contract. They're still locked into contract, but they switched to FreeBSD because they can cut down their number of VMs by 30% and get the same performance. They also found it easier to manage FreeBSD. They're paying for that contract, but not using it. I bet that was a fun sell to management.
Have a look at their donations page https://www.freebsdfoundation.org/donate/sponsors
Companies support this project because they are doing serious business with FreeBSD.
Because the SAME message has been randomly posted a bunch of times as replies to completely unrelated topics. I guess you are confirming that you at least spent the effort to copy and paste it? Bravo for you. But it's still spam.
If you delete the "beta" part of beta.slashdot.org/sdfsdsdfsdfsdf, the page will reload as the old style.
I had pretty much the same reaction when I saw that horrible new layout, but noticed beta in the address bar, and took it out, and got back to the old usable site. A page reload sometimes brings back the broken new layout, but deleting beta will bring back the old again.
RIP slashdot, when they make the above no longer work.
OpenBSD has exactly one use. They are the current maintainers of OpenSSH, and they pretend that it makes them competent overall in security.
FreeBSD, conversely, is at the core of MacOS and is a successful example of commercial use of open source software. Unfortunately, they're not making their resulting code open source, so the results are not ideal.
Where in the world is serious stuff being done on any of these platforms? Just asking...
Firewall and NAS solutions are often based off of FreeBSD. See, for example, m0n0wall and its derivatives, as well as the popular FreeNAS.
One big advantage of BSD for NAS applications is that it can support ZFS. (Linux attempts have been half-assed, largely due to licensing conflicts.) You really want ZFS if you are building a robust, reliable NAS device.
Yes, but why? Just because Netflix chose to use it doesn't in any way justify anything. http://www.logicalfallacies.info/relevance/appeals/appeal-to-popularity/ BSD (2 flavors) vs. Linux: How should I decide? They're all Unix-like, open source, and supported. Which is faster? More stable? Reliable? Secure? In all cases, anecdotes are not useful. Where's the evidence? Is it the license that matters?
Yeah, but working as an Internet server is easy. What do you need, a network card driver and some server software? That problem has been solved a long time ago and almost any OS can be used for the purpose.
Now, give me a cool, fast, usable and bug-free desktop and we will start talking.
seconded !!
Fuck you, bitch.
More stable? Reliable? Secure? In all cases, anecdotes are not useful. Where's the evidence? Is it the license that matters?
The license, pf, and a reputation for networking speed.
Anecdotes do matter, though - Netflix works and is profitable, so if your use case is like Netflix's then FreeBSD probably will work for you.
Speaking of anecdotes, a trend that I've noticed is that linux fans will tend to use FreeBSD when it makes sense in a particular application, and FreeBSD fans will tend to use linux when hell freezes over.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
He's often "technically correct". What I mean is that OpenBSD is really secure in its default setup... because it doesn't do fuck-all. Security via turning off everything isn't really that impressive. When something is supposedly so much superior on a security front, yet seems to get very little usage, well, there's a reason.
Also, even if you are right, you shouldn't be a dick about it. Perception matters in the world and if you want to persuade people to your position, you need some empathy. If you act like a jerk all the time, it puts people off and makes them dislike you, and thus not consider the content of your claims.
... if, say, the military or state department actually follows the NSA's suggestions, there's a decent chance that those suggestions are pretty close to as good as it gets ...
Are you saying that NSA hasn't yet created enough havoc, that you wish the State Department and the Military to join NSA in making even more violations to our Constitutions ??
Muchas Gracias, Señor Edward Snowden !
How the fuck is it spam? There's no commercial content in it.
There are three definitions for the term "spam" which are used.
1. Originally, it was used to indicate a flood of data with no actual meaningful content.
2. At some point some politician passed a law defining it as "commercial solicitation".
3. Most laymen use the definition of "anything I don't want to see".
On slashdot, you usually see definitions 1 and 3 used.
If I put wheels on your metal office desk you can have a cool (temperature), fast (relative to otherwise stationary), usable (it's the top of a desk), and it will be bug (termite) free. That's all you get.
Working as an internet server is easy, sure, we've had Microsoft's IIS and Raspberry Pi's doing it. Working as a safe, stable, secure one is hard, and for that we have the BSD's.
Me failed English...
FreeBSD over Linux. If my comments seem odd, this may explain...
yeah, and netmap on freebsd is pretty damn cool (finally) compared to that similar stuff linux has been trying to do. not to mention what, like 5 or 6 different linux firewall implementations over time now, lol.
i totally agree, freebsd is much easier to manage than linux.
linux has got so damn bloated with all the distros, and trying to abstract any and all form of raw unix iron away from the user into purty little GUI's, that it's a freaking wonder anyone in linux land has any clue about anything other than where the power button is. seriously. all those layers are just that bad. and when they break and even start stepping on each other's toes, the only fix is to reinstall.
i'm sorry to say it but the bsd's are sexy.
i'm never going back to linux.
I think you are talking to a Gospel Rock song generator. http://www.song-lyrics-generator.org.uk/
Excuse me, but please get off my Pennisetum Clandestinum, eh!
Oh really? Theo said they took something from Linux...
Excuse me, but please get off my Pennisetum Clandestinum, eh!
Just to remind you, His Holiness Saint Jobs forbids reading about heretic technologies.
Then maybe he should've fired the folks responsible for Apple's Internet connection, given that it was, at least as of 2011, quite possible to read, and post to, Slashdot from Apple's corporate network.
Netapp, Juniper, Bluecoat, others.
I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
Oh and of course. OS X, iOS.
I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
Gotta love having such a secure system, that can *now* print to my dot-matrix printer! Snowden, wouldn't be able to carry all these printouts in his suitcase!
Also Netapp, Juniper, Bluecoat...
I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
Anecdotes do matter, though - Netflix works and is profitable, so if your use case is like Netflix's then FreeBSD probably will work for you.
Sounds like cargo cult software engineering.
Also, Mac OS X is essentially a fork of FreeBSD.
Bull-fucking-shit.
I know this is slashdot, but for fuck's sake you should still know better than that! And +5 informative too?
What the fuck is wrong with you people?
OpenBSD is nothing more than software with a very low bug count. While bug free software is a nice ingredient, but for real security much more is needed.
It doesn't have to be like this. All we need to do is make sure we keep talking.
So basically it means that OpenBSD never supported chips for encryption and that's why it is more secure? FreeBSD allows to disable acceleration, too, if you want to do such a dumb thing and slow everything down.
In my opinion security is an extra, not the primary target. First target is application support and FreeBSD performs extremely well here. Even better than many Linux distributions.
Second thing is that OpenBSD is not that secure as you think. Many dumbnesses there are resolved quietly without notifying the public about. Others are played down in their importance. Is this how Theo wants to build up trust? FreeBSD does it a lot better with their security mailing list! They notify in advance and don't need to watch any weird image about security.
So every BSD-licensed piece of software now falls under the FreeBSD or OpenBSD projects, eh?
It's times like these I like to put on a nice strong brew of Columbian roast, then just navigate to ~/with/great/power/comes/great/responsibility/ and admire the fact the black market doesn't contain these exploits.
You know, when it only takes one or two pinholes to get root on any system, and there are hundreds or thousands per OS readily available for the right price... Kind of makes folks like Theo seem a bit imbecilic.
Yeah, because you are forced to install unity, gnome and kde in every single Linux machine and there are no distros without X.
...to catch up to user freedom. For them, it's all about the letting developers limit user rights.
Time is what keeps everything from happening all at once.
4. Yummy meat in a can
Is this like an inverse "*BSD is dying" troll?
As I've said for a long time now: "OpenBSD: a false sense of security".
Not claiming that their work is in vain by any means, the majority is good. However, there is a *lot* more to security than technical stuff.
Yes, they matter.
Even if nobody in the world would be using OpenBSD, it would still be worth doing it, because it is living proof that a secure Unix-based OS is possible if only its makers can be arsed to give a fuck about security and do the hard and not always exciting work required for it.
Assorted stuff I do sometimes: Lemuria.org
Of course they might share some stuff, but the parent post is talking about things like OpenSSH among others.
Yeah those lamerz at OpenBSD...
From Wikipedia:
Proprietary systems from several manufacturers are based on OpenBSD, including devices from Armorlogic (Profense web application firewall), Calyptix Security, GeNUA mbH, RTMX Inc,[5] and .vantronix GmbH.[6] Later versions of Microsoft's Services for UNIX, an extension to the Windows operating system which provides some Unix-like functionality, use much OpenBSD code included in the Interix interoperability suite, developed by Softway Systems Inc., which Microsoft acquired in 1999.[7][8] Core Force, a security product for Windows, is based on OpenBSD's pf firewall.[9]
Pedant fail. The basis for OS X was NeXTSTEP, and the basis for NeXTSTEP was BSD.
Have you considered switching to fucking decaf? Then you might notice that operating systems are more than just a kernel.
Sources? I'd be really interested.
Netflix and whatsup infrastructure is built on FreeBSD.
Cisco and Juniper networks embed FreeBSD in their switches/routers. Netapp also builds Storage appliances whose OS is based on FreeBSD.
This is just from the top of my head.
Oh, I forgot, there are also pfsense and FreeNAS which are quite common around.
The original question was if anything serious is being done using FreeBSD and why anyone would care (which can be interpreted as "is OpenBSD/FreeBSD relevant?"). These3 examples tend to give weight to the idea that FreeBSD is relevant and being used as a basis to make serious business, which answers the question.
If FreeBSD is a good OS from some theoretical viewpoint is another matter altogether. It is already being used for serious and relevant purposes all around.
That doesn't mean we take every idiocy he utters as gospel.
Chas - The one, the only.
THANK GOD!!!
Pedant fail. The basis for OS X was NeXTSTEP, and the basis for NeXTSTEP was BSD.
BSD what...4.2? 4.3? Far before FreeBSD.
Have you considered switching to fucking decaf? Then you might notice that operating systems are more than just a kernel.
No shit! But that doesn't change that using a modicrum of FreeBSD code in your utilities doesn't make your OS a "fork" of FreeBSD.
Y'all used to know better, now you don't.
BSD ain't dying -but I sure can't say the same for Slashdot...
Netflix is a nice example, but if you use the Internet the first thing you probably do is use DNS. Verisign's root servers and the TLD servers that they run all use a 50:50 mix of FreeBSD and Linux (diversity is important, because if there's an exploit for one then they can just turn that one off until it's fixed. They also run different resolvers and so on).
I am TheRaven on Soylent News
I once wrote to another fbsd dev about (I admit, theoretical - that's true) vulnerabilities in their disk encryption scheme (gbde). He basically laughed at me. The really funny part is that it is me who has PhD in cryptography... ;)
I'm sure every OS-maker out there has something to learn from OpenBSD, but Theo De Raadt seems incapable of acknowledging that others may have different design criteria than OpenBSD. If they wish to support their customers and gain more business, Red Hat, Apple or Microsoft, for instance, cannot make security the only factor. They have to be quick at supporting some new hardware, provide ease-of-use features and add new features or be considered obsolete very quickly. The same goes for plenty of makers of hardware products.
If OpenBSD was capable of both extreme security and the quick development mentioned above, he'd have proper bragging rights for beating the other players. Otherwise he is simply playing a different game than them.
Something that wasn't alive cannot die.
If you're secure because you don't run X, Y and Z, then this says nothing about how secure you are running X, Y or Z. Which means if you need any one of them, you may be insecure by default and another "less secure" system that is "less secure" because X, Y and Z are running by default may be much more secure than OpenBSD running any one of them.
MS Windows is secure by default: the computer doesn't come to you pre-turned-on, does it? No. Therefore it will be impossible to run a virus on it in its default state!
The basis for NeXTStep is the CMU mach kernel, onto which was grafted a BSD 4.3 'personality' (i.e. userspace + kernel interface). NeXStep 1.0 came out in 1989. FreeBSD 1.0 came out in december 1993.
The parent may not be very polite but they are right, there is no direct relationship between NeXStep or OS/X and FreeBSD. At best a part of a common ancestry, which almost all Unix-like OSes share anyway.
The little picture at http://tech-beta.slashdot.org/story/13/12/16/0121213/theo-de-raadt-says-freebsd-is-just-catching-up-on-security nearly brought a tear to me e'e.
Get thee glass eyes, and, like a scurvy politician, seem to see things thou dost not.--King Lear
Well it's probably nicer than talking to Theo De Raadt...
I'm old and my brain is broken, but I do distinctly recall that early Rhapsody & OS X builds/DRs and initial releases were a hybrid of NeXTSTEP/BSD 4.3 Tahoe and NetBSD, specifically. In the late 90s during the DR development, NetBSD already had mature code accustomed to running on PPC, while FreeBSD was focused on x86, which was not even a glimmer at the time (although not entirely fair, as NeXTSTEP/OpenSTEP ran on x86 & 68k, and Rhapsody was x86 & PPC).
Documentation on this period is pretty thin I'll admit, but before I'm crucified for it, just run 'strings' on any given OS X build prior to, say, 10.3 and compare. And it's not like Apple's skittish of it, NetBSD is the core OS for the Airport and Time Machine lines.
Super-pedantic, but tech history has a way of getting conveniently fuzzy on the Internet in favor of the larger install bases (cf. "Chuck Peddle"). But maybe I really am senile and this is just a big persecution myth that I perpetuated to myself.
At least Theo doesn't resort to cheap ad hominem attacks. The funny thing is you both try to cheaply attack his character in order to dismiss his intelligence (like a stupid "dick" or "cunt"), but take the politically-correct stance because you're sooo morally superior. What is it? So far your attack lacks intelligence and meaning, while being morally inferior.
It's not rocket science. Most of the moderators on slashdot are teenagers. People with jobs typically don't have time to work for free.
WalMart's generic 'spam' is better than the real Hormel variety.
Cheaper, too.
That is not dead which can eternal lie
Yet with strange aeons even death may die
The biggest security hole in any operating system is the same in every operating system - the source of ID-10-T and PEBKAC errors (Idiot, and Problem Exists Between Keyboard and Chair) - the OS can be totally secure and hardened, but if it allows users to do stupid stuff then it is still going to be vulnerable.
Unless, of course, the system is totally locked down so that it resembles the IT version of a strait jacket, in which case users will spend as much time cursing the fact that the computer stops them working, and trying to get around your restrictions to see their lolcat pictures as they do actually working.
Don't get so upset -- it's a common mistake on Slashdot to mistake Scientology for XNU.
>>"ad space available -- low rates!!!"
Projects made by FreeBSD kernel programmers who wanted to take advantage of FreeBSD features? It is kind of a grey area.
The maker of Varnish also responsible for part of UFS2, FreeBSD GEOM, FreeBSD malloc, part of FreeBSD NTP library, FreeBSD Jails, and the MD5 hashing algorithm used for password storage in FreeBSD back when strong crypto was not allowed to be exported. Interesting to note that in an interview, he said he found out his MD5 code was used in Linux, almost verbatim of that from FreeBSD. According to the license at the time, to use his code, they were supposed to acknowledge him as the code creator, but Linux did not. He was more concerned that Linux was using his quickly thrown together code that used MD5, because it wasn't that secure, but it did pass the export restrictions at the time.
Seems Linux was violating the BSD license at the time and "stole" source code by not doing the simple thing of giving credit where credit was due. He already doesn't like GPL as he terms the Beerware license http://en.wikipedia.org/wiki/Beerware , playing on "beware the 'free as in beer'". He thinks GPL is kind of viral and hooks you in with the "free", then puts you in an awkward position later.
PARTS of BSD, it's a Hybrid with XNU and it's part monolithic and microkernal and they've developed Darwin beyond all recognition from that point.
To say it's FreeBSD or OpenBSD or your dad's BSD is to invite the wrath of people who drank too much coffee, and I think Odin. Because that's just the kind of thing that will get you punched in a mainframe computer center.
>>"ad space available -- low rates!!!"
Also, Mac OS X is essentially a fork of FreeBSD.
+5, Funny
0 1 - just my two bits
http://en.wikipedia.org/wiki/OpenBSD#Desktop
but my guess is because you even asked,
that by 'desktop' you mean 'graphically managed bloatware'
and that by 'fast' you mean ulta-mega-optimized-binaries-to-the-point of instability.
What the fuck is wrong with you people?
Nothing. Darwin runs the XNU kernel:
https://en.wikipedia.org/wiki/XNU#BSD
I remember seeing ChangeLogs from Apple that exactly mimiced FreeBSD's ChangeLogs (e.g., NFS fixes). In recent (10.6+ ?) versions they've gone their own directly, but just as NeXT was based on Mach+4BSD, Mac OS X was based on Mach+FreeBSD.
To say that Darwin is a fork on FreeBSD isn't totally inaccurate.
That's because they get the meat for free from their employee's "donate a child" program.
You may want to pose that question to Netflix. They account for about 1/3 of the traffic on the internet and all that traffic is served from FreeBSD servers.
Netflix may use freebsd internally, but the movies are stored on amazon s3 and served from there. So, no, freebsd doesn't account for 1/3 of the internet traffic.
I have nothing against freebsd and have used it extensively in business.
Do you have ESP?
Speaking of anecdotes, a trend that I've noticed is that linux fans will tend to use FreeBSD when it makes sense in a particular application, and FreeBSD fans will tend to use linux when hell freezes over.
This is me. I have tried numerous times to use FreeBSD as my home server OS and a few times as my desktop dual-boot, but always end up getting frustrated. Usually it's application management, as any of my home *nix boxes are used for experimentation with lots of stuff being installed and removed. I'm just so used to tools like aptitude and Synaptic that anything less pisses me off, and after a few days to weeks at most I end up reinstalling something from the Debian family tree. Same problem actually tends to happen with Red Hat style Linuxes, there doesn't seem to be an "aptitude" equal for the RPM world.
I use a FreeBSD-ish userland daily in the form of OS X, but don't usually have to deal with shitty management of *nix applications thanks to many having proper OS X .app packages available. Beyond that "homebrew" seems to be the current favorite analog to the "average" *nix packaging tools.
But my router/firewall has been FreeBSD for over a decade now, once m0n0wall but these days its more featureful derivative pfSense. pf is just superior to iptables. These things are rock solid and almost any change can be made online without affecting existing traffic, which is more than I can say for every Linux-based router/firewall I've used.
I used to get high on life, but I developed a tolerance. Now I need something stronger.
Features implemented specifically to be difficult to add to Linux are difficult to add to Linux. News at 11.
Unity? Screw that: XFCE. Slashdot Beta? Screw that: SoylentNews. Australis? Screw that: Pale Moon. UX developers DIAF
Have you considered switching to fucking decaf?
Was it Chris Dodd who was caught fucking de caf? Maybe he's really into pedo-bestiality.
TIL: OpenBSD is responsible for booting from encrypted volumes (incredible, since Windows and Linux have been capable of this for about a decade, and OpenBSD only started supporting it in 5.3!), MBR protection (aka secureboot), and ASLR (added to: OpenBSD-2008, Windows -2007, Linux - 2005).
I also learned that Truecrypt, BestCrypt, Bitlocker, and LUKS have all been doing it wrong for well over a decade.
Incredible!
The first Wikipedia article you linked to proves you wrong:
I'll grant that that probably isn't enough to call it a fork.
BSD what...4.2? 4.3? Far before FreeBSD.
After starting off as a patch to 386BSD, FreeBSD was based on BSD 4.3-Lite.
No, off by default is the right way for security. It reflects the correct way to think about security.
I'm not sure your statement about adoption forwards any logical point. Ease of use and security are generally considered to be a straight-line tradeoff. People don't use OpenBSD because they put other values (ease or use, more default packages, works with x, etc) above security. OpenBSD is a joy to use, until you find something that "just worked" in Linux and doesn't (easily) work in OpenBSD. Security isn't free.
I'm always amazed when people (especially other geeks) don't understand that many gifted computer people have weakness in other areas. Social skills being a prime example. Theo isn't some kind of demi-god, he's a person with one extreme strength and other weaknesses. Torvalds and Stallman aren't exactly the kings of diplomacy either. Being a bit anti-social is more of the norm for genius types.
Competition Good, Monopoly Bad.
Or you could just click the 'Slashdot Classic' link in the footer. :)
They definitely have ones higher than that and it's often for playing with tech that nobody inside or outside the country should know.
I'm sure there's similiar stuff for Russian, China, the UK and all the rest.
I've sent a correction to the FreeBSD docs folks, but to clear the record here:
PS3 was not based on FreeBSD. While it does use a variety of open source components from a lot of projects and does cite them, that doesn't mean it was "based on a modified version of FreeBSD."
PS4 certainly is, but not PS3.
The original question was why care and where is serious stuff being done. Are you disagreeing that putting together one of the largest content delivery networks ever is serious?
Netflix is doing really interesting stuff on their FreeBSD systems.
If you want very specific answers to why: The BSD port system is a huge reason. The main OS is developed in a release cycle where stability and security are the main goal. Riding on top of this is the ports system which all other software packages are built from. If you don't like one of the compile time flags in some software package you just make that change you want the first time you build from ports. You then have a custom package that you can deploy to all your other instances. The ports system also has the benefit of being much much more up-to-date than any linux distro except for Arch and Gentoo. Arch uses a rolling release development model and strives for everything being up-to-date. Gentoo uses the BSD ports system idea for their package management system portage.
The basics of it are that you get the stability of a regular release cycle and your installed software is always the current stable version.
You may want to revisit. The base tools for package management can be frustrating for someone who is learning them. Fortunately there are some newer tools that are in regular use probably after your last time using FreeBSD. The utility portmaster is most likely what you're looking for. It is able to control the ports system and package management very very very well. It has no external dependencies (it's actually just a huge shell script).
In addition to portmaster, the base system's package management has been completely rewritten in pkgng. You will find that it takes many good cues from debian apt.
All of these are command line tools. If you're a GUI type and shy away from command line, BSD's are not for you (yet).
You are absolutely right. The guy complaining about my statement is uninformed. If you run strings on command line utilities in older Mac OS X builds you will also see the comment string left by the code being checked into the FreeBSD CVS source tree. Those comments have the word "FreeBSD" and the revision of the code being checked in and the name of the FreeBSD developer that did the commit.
From the horses mouth: "The power and simplicity of Mac OS X Server are a reflection of Apple’s operating system strategy, one that favors open industry standards over proprietary technologies. It begins with a UNIX-based foundation with Mach 3, FreeBSD 4.8, and the latest advances from FreeBSD 5 at the core."
Also, why would Apple have hired the founder of FreeBSD, Jordan Hubbard?
http://www.apple.com/server/docs/MacOSX_Server_TO_300195.pdf
So a pill popper? A prostitute user? And when he's wrong, it royally screws something up?
I don't know about the first 2 ( I am clearly stating they are a no (just going out on a limb to avoid any slander/libel laws), but you compared him to the TV character who's answer would be yes), but the 3rd question's answer is most definitely true.
All of these are command line tools. If you're a GUI type and shy away from command line, BSD's are not for you (yet).
I'm a best-UI-for-the-job type who's at home in a CLI but doesn't turn down a good, functional GUI when one exists.
The Debian tool I'm a big fan of, aptitude, is a Ncurses based "TUI" package manager. (http://screenshots.debian.net/package/aptitude if you can't picture it) Synaptic is pretty much the same thing with a few more features in GTK form. These make it far easier to resolve package conflicts and such compared to the straight CLI tools.
It's not a major loss in a production system where the packages needed are known and mostly unchanging, but for personal machines where I install things I want to play with on a whim a good interface to actually browse the available packages is key.
I used to get high on life, but I developed a tolerance. Now I need something stronger.
I don't think this guy knows what he's talking about, but that's beside the point. There is absolutely no reason to argue against an operating system you DON'T use. That is the reason you use OpenBSD instead of FreeBSD right? Shit if you're that worried about security go play with Windows for an hour, and come back to see how secure FreeBSD actually is. /dev/random is supposed to become incrementally better with time, but FreeBSD is about tested stability. You're criticizing the project for not implementing a new technology and that is arrogant. Keep testing your chip-based crypto and when it's ready it will get used right away. For now software cryptography is perfectly fine.
More stable? Reliable? Secure? In all cases, anecdotes are not useful. Where's the evidence? Is it the license that matters?
The license, pf, and a reputation for networking speed.
Anecdotes do matter, though - Netflix works and is profitable, so if your use case is like Netflix's then FreeBSD probably will work for you.
Speaking of anecdotes, a trend that I've noticed is that linux fans will tend to use FreeBSD when it makes sense in a particular application, and FreeBSD fans will tend to use linux when hell freezes over.
So you're saying Linux/GNU fans that use FreeBSD aren't capable of being FreeBSD fans. There's a flaw in your argument.
Ops, I shuld have usd the prevuwe but in.
So you're saying Linux/GNU fans that use FreeBSD aren't capable of being FreeBSD fans. There's a flaw in your argument.
Remember, 'fan' is short for 'fanatic'. Logic isn't really part of it.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
So you're saying Linux/GNU fans that use FreeBSD aren't capable of being FreeBSD fans. There's a flaw in your argument.
Remember, 'fan' is short for 'fanatic'. Logic isn't really part of it.
So, FreeBSD fans refuse to use Linux for no logical reason. Ok, now I understand.
Ops, I shuld have usd the prevuwe but in.
So, FreeBSD fans refuse to use Linux for no logical reason. Ok, now I understand.
I wouldn't read too much into a hyperbolic anecdotal stereotype if I were you.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
I get you, but I use the SVN repo here and the ports search here for doing all that. Then I use either pkg or portmaster to install what I want. The other great thing is that pkgng the package manager is supported by puppet, chef, cfengine, ansible, and salt. So installing packages and keeping everything up-to-date across all the variety of servers in a datacenter is a snap.
Speaking of anecdotes, a trend that I've noticed is that linux fans will tend to use FreeBSD when it makes sense in a particular application, and FreeBSD fans will tend to use linux when hell freezes over.
Probably because FreeBSD has lower market share; FreeBSD users have a lot more to lose per user compared to Linux.
FreeBSD can't afford to lose as many users as Linux can, else they become too small of a market to be worth supporting; and this manifest's itself as an apparent defensiveness for the users of the FreeBSD.
If roles were reversed I would expect the inverse to happen. Though it could be that FreeBSD users are just jerks, but I prefer to be optimistic.