Slashdot Mirror
Interview: Ask Theo de Raadt What You Will
Theo de Raadt was a founding member of NetBSD, and is the founder and leader of the OpenSSH and OpenBSD projects. He is currently working on OpenBSD 5.5 which would be the projects 35th release on CDROM. Even though he'd rather be hiking in the mountains or climbing rocks in his free time, Theo has agreed to answer any question you may have. As usual, ask as many as you'd like, but please, one question per post.
Has the NSA scandal changed the status of the OpenBSD project?
Do you realize your project would be more successful and provide more value to the community if you weren't such an asshole?
Given the pervasive nature of NSA compromising, do you know of any attempts by the NSA to put in backdoors or otherwise compromise OpenBSD--either by approaching you directly, or by infiltration?
Slashdot: Failed Car Analogies. Amateur Lawyering. Anecdote Battles.
http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/... http://www.2014oksunglass.com/...
Comparing the most recent stable distros of each, what areas would you say OpenBDS is better/faster/more robust etc. than Linux?
Up until recently http://openbsd.org/ went to the OpenBSD website. Now the "www." is needed to get there. Why the change? Are there security implications to having a host on yourdomain.tld?
If so, How do you think the community would react / correct the situation?
Restore the madness of youth's lechery
Looking at a success of OpenSSL project in the private sector, key to this success is a very robust certification (FIPS and so on) effort. Are there any similar plans to dedicate resources to get OpenBSD endorse/certified?
I recently needed a free software operating system that could replace Solaris on a couple of Sun UltraSparc machines. After testing out the relatively small number of alternatives I found that OpenBSD had by far much better hardware support than the others. I know that a lot of this is the result from the effort your group spent a couple of years ago to get docoumentation from what used to be Sun. How would you describe collaboration with Oracle now when they run the remains of Sun, in particular around supporting modern Sparc64 based systems?
Theo,
From all of us in the open source community, why are you such a dick? Honestly, why do you feel the need to verbally abuse everyone who annoys you in the slightest way?
Sincerely,
Concerned Members of the Community
the rack picture on the lower right corner of the www.openbsd.org was taken in 2009. since architectures retired and some added since then, could we have a new circa 2014 picture?
Very often we admins have to make all kinds of hacks to get OpenSSH to support Chroot and ScpOnly. Would it be possible to make it simpler for these features to be added/configured without third party tools? OpenSSH is a foundational package, and making it easier to add these features would make it all that much better. Would be great to stick to your source 100%!! Thanks for your many contributions!
Time for a new Political party in the US (or two!) One is off the rails Other cant pony up a leader.
I would like to run OpenBSD on the Raspberry Pi.
I understand, sympathize, and accept your decision to avoid that platform, but what would you recommend as a stable substitute?
The BeagleBone Black seems like the endorsed alternative, although there were stability warnings until recently. The current status reads: "There are generally still a fair number of things to do on each of these boards, however OpenBSD is generally considered to be usuable on them. The platform is now self hosting, however there is no SMP support."
Would you point OpenBSD users interested in this hardware class at the BeagleBone Black? Any other advice? SLC media preference?
TI has announced that it is discontinuing the OMAP line. Will Beagle move to another ARM licensee, and does that matter much for OpenBSD?
Slashdot interviews for Richard Stallman, Eric Raymond, and now Theo, all in the last week?
What happened? Did someone at Dice push Slashdot management to try and "reclaim technical roots"? Is someone a little worried about http://soylentnews.org/? Or maybe this is part of a last-ditch effort to increase revenue^W^W reclaim reader loyalty?
Slashdot Media was acquired to provide content and services that are important to technology professionals in their everyday work lives and to leverage that reach into the global technology community benefiting user engagement on the Dice.com site. The expected benefits have started to be realized at Dice.com. However, advertising revenue has declined over the past year and there is no improvement expected in the future financial performance of Slashdot Media's underlying advertising business. Therefore, $7.2 million of intangible assets and $6.3 million of goodwill related to Slashdot Media were reduced to zero.
source.
Perhaps not, but really, you guys are still trying way too hard now. I'd have thought you realized by now that successfully running a site like this is a marathon, not a sprint. Throwing up a few half-baked interviews with prominent open source figures isn't the answer.
"What do you despise? By this are you truly known." --Princess Irulan, Manual of Muad'Dib
/)
While there is much creative energy diverted into who has the One True Licensing scheme, is it possible that the global economy is better served by licenses that respect the diverse motives of humans?
I'd group them as proprietary, GPL, and BSD, to offer a rough taxonomy. These groups seem to correspond to the wallet, the heart, and the mind, or, three of the main drivers for hacking code.
Our energies might be better spent making sure that lawfare and legislation doesn't devour any one group.
Does that make any sense?
Cheers, Theo.
OK, tongue-in-cheek question: did you cash in all those bitcoins before Mt Gox imploded?
More seriously: what are your thoughts on the future of ZFS, BHyve, non big-lock SMP, SMP-enabled pf (see NetBSD npf) on OpenBSD?
Related question: what is the future of OpenSSH-based VPN functions?
Even more seriously: in light of the recent Snowden revelations on NSA spying, can you tell us more about the audits realized after a few (past) developers were accused of creating backdoors in OpenBSD for the FBI?
Finally, and this is not a question: all my thanks for a great OS. I use it daily and truly appreciate all the hard work.
The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
Last time I saw pictures, you and others were working from a home. How is everything structured now? Are you living alone and working from your house, or are there others there, too? How has this affected you long term with your personal life and relationships? What type of job did you have before OpenBSD? Assuming you did before, do you ever miss working in an office?
Sig: I stole this sig.
What are your thoughts on code signing, and do how do you see the development of such proceeding in the free unix world. In Powershell for example, i can set a system-wide policy to only run scripts if they are signed with a trusted certificate.
This means I can, for example, delegate script development to an underling, review the script and then sign and push into production, knowing that the script will not run if it has been modified in the field without authorization - enabling proper change management process to be enforced.
Other platforms require all code to be signed before it will run.
Do you foresee anything like this (obviously with the master signing authority being the local site admin) for OpenBSD?
I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
I know it can sometimes be more of a burden, but thanks for all the work you have done Theo. I use OpenSSH everyday, and I find it to be one of the most reliable, most secure (even with all the NSA revelations) pieces of software in daily use around the world.
That being said, the more I investigate how to increase security, I am increasingly struck by how borked SSL is as a whole. (CA messes, vulnerable to MITM, DPI, etc).
My question is this: do you think at some point we should start re-evaluating our fundamental kernel architectures to help alleviate some of the security issues recently revealed? I mean, with hard-drive and bios level rootkits, etc, even SSH is standing on a foundation of sand it seems. Thoughts?
"It's ok, I'm completely secure as long as my iron is off"
I recall the whole budget shortfall story of not all that long ago (Past few months or whatever it was) where you had to seek out donations in what sounded like something of a somewhat dire situation in order to be able to pay the power bills for your dev shed, which I also gather is attached to your home. I recall when I was in Alberta, the fossil fuel-dependent electricity system gave me bills that were something like 2-5x higher than what I was used to back in BC, and everyone was all entranced by oil heaters which also cost way too damn much... whereas back in BC, I wouldn't even run over 50 dollars in, say, December, even if I was running a space heater for most of the month and my computers would be on 24/7. Have you ever considered relocating to Vancouver or somewhere else with a cheaper avg power bill (And plenty of hiking/mountains/fresh air as well) in order to cut the costs of that end of the project down? Why Calgary?
Hi Theo, I'm a fan of OpenBSD partly for its hacker ethic and partly for the songs. A few of them don't have commentary, which I find sad. For songs like 'El Puffiachi' and 'I'm Still Here', what was your creative input if any?
Good people go to bed earlier.
I appreciate the fundamental work that OpenBSD does in security and other areas, especially things like the recent work in getting X to run without privileges.
AFAIK OpenBSD was the first to accomplish this, and I'm wondering how much of that research and know-how, maybe not code, can be used by other *NIXes? I know there are license conficts between the BSD's and Linux, but how much of the experience gained from that effort can be used to improve other *NIXes even if code cannot be reused? Is the OpenBSD project involved in sharing this experience, and others like it, with Linux distros or with NetBSD or FreeBSD?
The Information Revolution will be fought on the command line.
Are there any efforts made to ensure that OpenBSD can run native apps written for other platforms, such as Linux or FreeBSD? Or is OpenBSD's target usage exclusively routers & firewalls?
Given that a lot of the platforms that OpenBSD was ported to are now dead - such as PowerMacs, Alphas, PA-RISC and so on, are there any efforts on to port OpenBSD to non-x64 platforms that exist today?
If you couldn't use OpenBSD anymore what other OS would you prefer to work with?
http://saveie6.com/
Why does OpenBSD use a CVS derivative for the code repository? Why not use a distributed VCS? Do you feel that there is an advantage to use the current repository or is there another reason to use it?
.
I know you are a proponent of strlcpy. Why do you think some projects resist using it so much?
You're name is synonymous with OpenBSD. If you were to get hit by the proverbial bus, does OpenBSD a plan to keep it going and relevant?
Why did it take the project so long to start package signing over insecure mediums such as FTP?
What do you consider to be the most elegant or well-designed API in BSD?
Why is openbsd.org such an ugly website? Is it because you want people to take it seriously or is it because no one on the project knows any CSS?
I respect your large brain and all your highly secure exploit-free software, but if I were responsible for view-source:http://www.openbsd.org/ I'd be pretty fucking embarrassed.
It seems like every time you turn around, another bitcoin exchange is hacked or some startup social network for dogs is secretly uploading all your phone contacts over clear text or a retailer is storing unencrypted cc numbers and passwords. Some of the worst offenders are brogrammers. Is there anything we can do?
Do you even lift?
These aren't the 'roids you're looking for.
I've been using OpenBSD as my wireless home router, server and development platform since 2005, and can from 9 years of experience safely say that the current state of OpenBSD's Wi-Fi drivers and 802.11 stack is troubling. On one hand, most chipsets out there have rudimentary driver support in OpenBSD, including WPA2 and CCMP facilities. On the other hand, the 802.11 stack still lacks 11n support (minor problem) but what's much worse is that while only two of the drivers - ral(4) and athn(4) - state that they can handle power-saving clients when running in HostAP mode, none of them actually do it properly. None of the support ral(4) chipsets can handle power-saving clients despite what the ral(4) man page claims, and while athn(4) works slightly better it's still flaky with unreliable results, no matter what wireless chipset the client uses. The effect is that OpenBSD is useless as a wireless access point without having the clients pull one of several tricks available to avoid them from entering power-saving mode, as have been posted and explained by troubled users on the OBSD mailing lists regularly over the years.
I understand that Wi-Fi portions of OpenBSD aren't exactly prioritized, but are these issues even on the roadmap?
In your opinion, what does OpenBSD/OpenSSL/etc. need from the community?
Now that you received a large donation to keep the lights on, what is next on the list of things that would help move things forward?
production hosts usually don't have compilers on them unless they are really needed but openbsd distributes security patches instead of precompiled binaries which could easily replace the old ones. this makes patching a production system more complicated than on linux servers and lead to a more insecure system which should not have any compiler installed. why is this the case and will this change in future?
Sometimes you need someone with no hesitations about ripping someone a new one for doing something stupid
Yes, I agree that sometimes an anoplasty is needed. But that doesn't mean you have to use an abrasive tone while doing so. There are usually ways to get a point across with wit and good analogies instead of NSFW language. It worked for Jesus of Nazareth when he tore the leaders of Pharisaic Judaism a new one for their hypocrisy.--Matthew 23:1-39.
To me it seems the OpenBSD project is one of the most organized open source projects out there. It's release scheduled chimes like clockwork and it has been going like this for many years now. I have read that "Dictatorships" (read Corporations) are generally more efficient than "Democracies" (read Volunteer Communities) as bureaucracy is reduced and decisions are swift, do you consciously lean to the "Dictatorship" leadership style for the project guidance of OpenBSD and do you think it is because of that style that the OpenBSD project is run so efficiently?
(Ok I think that might have been 2 questions.. but I only used one question mark so i think it will pass)
I applaud efforts to make slashdot more technically relevant and useful and interesting, keep trying too hard!
I see that GSOC 2014 has a proposal to port Capsicum to OpenBSD.
So what is going on with OpenCVS?
Its been coming soon for a very long time!
Almost any software that is available for Linux or FreeBSD is (or can be) ported to OpenBSD.
Or maybe you are asking if OpenBSD can run binary executables targeted for other operating systems? FreeBSD can run Linux binaries (when appropiate support packages are installed), and of course there are several emulators / virtual machines to run non-native programs.
I read your question as meaning that you find the amount of available software lacking, and I really don't think that is the reality. There is a lot of software, most free (beer/speech) software runs very well and is already ported and ready to go. But if you want to play the latest triple-A blockbuster game, then no, that is not something you can run on OpenBSD.
Full disclosure: I've run OpenBSD as my primary desktop and server OS for a few years now. Why? Because system administration is so simple and straight forward. For me (YMMV) it is much more logical and grokkable than Linux. Not to say Windows, which I never got the hang of, administration wise.
There is no need for third-party tools for what you want to achieve. While the solution is a bit ungainly, all of it is already supported by OpenSSH and its sftp subsystem. This is how I configured things on my system:
/sbin/nologin as shell to deny them shell access. Their home directories should be owned by root:sftponly, and within the home dir you then create relevant user-controllable directories which should be owned by :sftponly.
/usr/libexec/sftp-server
First off, add a group that you call f.e. "sftponly". New users that are to be allowed only sftp access should have "sftponly" as their login group, and have
Secondly, the sshd_config magic that makes the whole charade work:
Subsystem sftp
Match Group sftponly
ForceCommand internal-sftp
ChrootDirectory %h
When the hardware vendors release their hardware documentation, proper drivers can (and will) be written. Until that time, no dice.
It isn't lack of priority, it is lack of (non-restricted, non-NDA) access to the chipset documentation.
FUCKING USELDESS EFNet servers.
Small explanation: what happens is that when the SSHd matches the user's login group successfully, it forcefully switches over to the internal sftp component instead of the default external subsystem, which in turn makes it possible to chroot the user to his/her home dir without having to place a plethora of system files in each user's home directory.
Being nice takes up too much time, being terse and quick is key.
You can be terse and quick without profanity.
And for the record, please don't quote and site works of fiction
Wouldn't that apply to geeks' favorite SF as well?
which people on current team would be the best designated successor(s)?
openbsd carp squats the mac address range that's assigned to vrrp and this causes severe connectivity problems if users run both protocols on the same lan with the same vhid/vrrp group id. why did you/the openbsd developers deliberately make this choice when you knew full well that it would cause breakage for end users due to the same mac addresses being used?
How has OpenBSD managed to avoid these sorts of decisions historically?
I know there is systrace, but that really isn't what I am looking for. Will there be plans to have a proper auditing daemon be able to monitor system calls in a log file? Being security centric, I would think this would be something high on the list. I know it puts a lot more load on the system and may be difficult for smaller systems, but auditd logs are considered good practice in Linux and FreeBSD. Any chance this will make it into OpenBSD at some point?
Why is bigmem still off by default on x86 platforms?
What do you see OpenBSD best utilized as by multi-OS power users who aren't afraid of trying new things? A firewall? Number crunching platform base? Cluster node platform? Refined DNS server? Minimalized desktop environment?
I'm not afraid to get my hands dirty, or look under the hood at kernel ops, but I'd like to know what you think your platform is best at if I'm going to consider it. What sets it apart?
If so, how did you make it a priority? More specifically, as the leader of OpenBSD what did you do to ensure great documentation?
As a software developer I know that documentation often falls to the wayside (features take priority, schedule already tight etc). As a project manager it's difficult to get good documentation (staff does poor job, stakeholders don't want to pay for it etc). OpenBSD has really good documentation (in my opinion) and it was really useful when initially getting to know OpenBSD, PF etc. Most of the pay for middleware I use has documentation that is absolute shit (incomplete, wrong, not up to date etc). To me the state of documentation in OpenBSD is more impressive than "Only two remote holes in the default install, in a heck of a long time!". Of course, "You'll love our man pages!" doesn't have quite the same ring to it.
"If you are going through hell, keep going." - Winston Churchill
tall fables of religions past
Please see my reply to bberens.
On top of that, how do you know what kind of language was considered profane or not back then?
Koine Greek is a fairly documented language. There is swearing in The Bible , and Paul of Tarsus was a lot dirtier than Jesus. On the other hand, maybe some people are right that perhaps we need a Theo for the same reason the characters in The Bible needed a Paul.
It's been reported that Mircea Popescu, owner of a bitcoin-only securities exchange, paid OpenBSD's 2014 power bill in full after learning of the project's financial difficulties. Was Popescu the first major donator, and after having been on the receiving end of such a large donation, what are your thoughts on bitcoin?
What are the top 5 things you would like to see happen in OpenBSD? Time and money are no constraint in this question :-)
Tom VL
There have been a whole lot of these question threads without any replies in the past few months (6 other threads in the past 3 months, all unanswered). Do these people actually know they are being interviewed, or are these just empty topics posted to bolster lagging page views/ad impressions?
"Even Prophets don't know everything"
We have a job opportunity at Goatse Security France. Contact martin.espinoza@gmail.com for more details.
you really also look like an asshole, ;)
Recently both Debian and Ubuntu decided to make the switch to Systemd. With more and more distros switching to Systemd, will OpenBSD do the same?
Do you have a plan to make OpenBSD widespread on the most popular wireless and wired routers, given that those boxes would benefit most from OpenBSD's security features? And in the process, gain more name recognition for your OS?
Why did a whole bunch of developers leave to start bitrig?
You should have a look at Bitrig, an OpenBSD fork, which is actively working on the armv7 platform.
I can recommend i.MX6 based boards. It's a powerful chip, has SATA, PCIe and Gigabit Ethernet (limited to 420MBit/s).
If you're interested, have a look at the RIoTBoard, CuBox-i, Utilite, Wandboard or the UDOO (with Arduino). Those are a bit more expensive, but some really nice machines.
We're also working on Samsung Exynos and Allwinner/Cubieboard. Personally, I prefer the i.MX6.
Exactly how much is "a heck of a long time" and for how much were those two remote holes exploitable ?
1% APY, No fees, Online Bank https://captl1.co/2uIErYq Don't let your $$$ sit in a no-interest acct.
This story has been on slashdot for 5 hours without us being reminded that netcraft confirms that BSD is dying.. Obviously slashdot is dying. Please being back more trolls.
Is there any possibility to make OpenBSD more commercially viable (similar to what Red Hat Linux has done) so that in the upcoming years OpenBSD can avoid extinction or at least be more widely utilized?
A word fitly spoken is like apples of gold in pictures of silver --Proverbs 25:11
Considering C is the source of countless security flaws. Why did you pick C?
If you had to start over what would you do to improve security?
Have you considered using the capability model and homomorphic encryption to isolate processes? If not why not?
How do you view BitRig? Does it remind you of OpenBSD's conception?
How do you convince users to follow you through painful upgrades like stack protection and 64 bit time_t changes? Why does OpenBSD do this sooner than other Unices?
The last time I tried to run OpenBSD, it was so I could test our static analyzer Fortify SCA on the kernel.
One thing that really held me back in my research is that processes were limited to about 1 Gigabyte of RAM each. What exactly is the reasoning behind this hard limit?
Note: I never finished my work, but it would be totally cool to compete this someday.
Take off every 'sig' !!
The focus in computing in general has been to make it more mobile and accessible. None of the big players have no real interest in free code, especially in mobile computing, and most end users / consumers have, at best, only a foggy idea of what the issues are when it comes to free code and proprietary blobs. You have labored long and faithfully to produce the best and most secure OS available without compromising on the root issue of open source vs. blobs. I'd be very interested to hear your thoughts on what "the community" (choke, gag) should be doing that it has failed to do so far.
But they'll only be available Beta. Or maybe /. TV.
/.'s trying to win all the doubters back over.
I have wondered though - interviews with RMS, Theo De Raadt, Eric Raymond (lol) have all been promised. It's as if
What are your thoughts about open source hardware projects like Novena which focusses on blob free hardware?
Theo de Raadt: why the bitching about BSD code put in GPL?
http://kerneltrap.org/OpenBSD/Atheros_Driver_Developments
And that's not the only article I've seen about BSD advocates bitching about BSD code being put into GPL code.
I don't get it. BSD advocates are fine with MS taking BSD code, and claiming it as MS code, and releasing only in binary. But, the BSD advocates bitch about BSD code being put into GPL open-source? WTF?
As I understand it, BSD is almost public domain. I can take BSD code, and relicense it any way I please. If I don't want my code relicensed, then I shouldn't release it BSD.
When you release your code BSD, you allow relicensing. That's why MS prefers the BSD license.
I just don't get it. If you want kernel improvements to be implemented back, why license your code under the BSD to begin with?
I took a look at the BSD license, and I don't see anything prohibiting anybody from taking BSD code and putting into a GPL project.
If BSD advocates want to thump their chests about their licence being so free, then why do they bitch when Linux - but not Microsoft - takes them up on their offer?
It does not seem to make sense to me.
Which software/tools do you and the developers of OpenBSD prefer for everyday work on OpenBSD notebooks and workstations? (e.g. window manager, web browser, word processing, spreadsheets, presentations, organizer, mail, chat, music, programming, editing, pdf viewer, video, image viewer, tor, ad blocking etc.)
We can see from GSoC that you would like having capsicum, but is there anyting that isn't on most people's radars yet, and you'd like to see in say 5.6?
I am going to do a leap of faith and believe that you actually exchanged mails on this topic and that the content was roughly as you say.
My naivety, however, won't go as far as to believe Theo would be arguing for performance gains over security.
That's what Linux people do. Theo's OS is the only major OS that has PIE among many other exploit mitigation features enabled(Of course I am not counting self-compiled versions of Linux in someone's mother's basement).
This is how it probably went:
The OpenBSD project spends a lot of time on audits, but I know little about this process. How does it work? Do you just read the code and look for bugs based on experience? Do you use tools? Is there a audit-specific skill set that separates auditors from regular programmers? Are there specific books about audits that you would recommend? What is the best piece of code you have ever seen (or written?). Also, non-system programmers talk a lot about TDD and unit testing, but system programmers in general do not do that. Do you have an opinion about those techniques?
OpenBSD has had kern.emul.linux for approximately forever.
I read on the net You've got 10 cats. Is that true, and do You have other pets ? And don't You fear your cats to attack the ducks You feed ?
Do You speak French or another language ?
Don't you think that at least some parts of the OpenBSD project (such as the ports and the web source code) could get improvements/fixes more easily? Could you explain the main reasons behind still using CVS for base?
Thank you!
Do you plan to give the corporate image a refresh? And what about using Comic Sans in most of your slides? :D
>>> I have found no empirical studies of OpenBSD security
https://www.usenix.org/legacy/events/sec06/tech/ozment.html
Pretend someone asked you to lay the architectural foundation of a new computer system that has security in mind, and given the fact that you could step out of a programmers shoes for a second into a computer engineers shoes, is there anything you would do different in hardware design? There is a canadian company making quantum computers, how interested would you be in sharing your ideas with them if they asked you?
What are top 10 things Theo would like to see moving in OpenBSD (either serious improvements or new features/technology)?
What are your views about the OpenBSD community? What do you want them to do as users (apart from buying DVD sets, etc.)?
In the recent Michael W. Lucas book "Absolute OpenBSD, 2nd ed" he wrote: "...The OpenBSD folks don’t care if they take over the world or not. They don’t really care if you use their software. If other people can get use out of it, that’s great. If not, oh well. They will happily assist you with OpenBSD specific problems, but they don’t really care about your database issues or your website....".
Don't you think it would be very helpful to state something like that in the official webpage? A section about Community explaining User Rights *and Duties* (like reading the man pages, faq, etc.) would be interesting.
Hi Theo, it's hard to imagine a unix being written in anything other than C. But do you have feelings about how we should be writing code for application layers? Would you like to see less written in C, and more written in Ada, Scheme, Java or other languages that make leaks less likely. Have you played with Ada, do you think its type model is a general improvement over what's available in C?
Believe with me, my saplings.
Do you think it would be a good idea to have an 'OpenBSD from Scratch' project - to enable people to build the OS from ground up?
Why do you not have corporate sponsors as the FreeBSD project has? Given the NSA revelations it might be not to difficult to team up with some company related to secure router/server business.
Do you never approach companies or do companies never approach you (or both)?
I would really appreciate if you would make the change to git. Everyone agrees CVS sucks, why do you not see this. It may actually have more people contribute.
What are the DO's and DON'Ts for those companies who would want to build their business around/involving OpenBSD?
bitrig seems to be a failure. IIRC its amd64 only and competes thereby with linux on the desktop. So they take a server os, use the most common platform there is for OSs and create yet another desktop OS.
If they would have targeted legacy hardware or small embedded devices or anything more specialized, it would have actually been interesting, the way they did it, no one really cares about them.
please have a freenode IRC channel for quick support, IRC is hip again for open source and I couldn't find an official OpenBSD channel, is there really none?
Is there some plans to improve the performance of FFS and make it more robust and less-fsck-depedent. or rather, introduce another File System like HammerFS and ZFS. Thank you.
Will OpenBSD devs keep improving Linux emulation in OpenBSD? I see it's only usable in i386 and, to some extent, incomplete. Thanks.
"The sky is falling, the sky is falling!" "We need $xxx,xxx or OpenBSD will be SHUT DOWN!". "We don't have the money to make our electric bill!" Bullshit
You got your $20k for electric. You got (last time I checked) $140k of $150 for 2014 donations.
Let's see some actual accounting of where this money goes, or did Theo just want a paid trip to Las Vegas?
Call me what you will, I don't care. Until I see detailed accounting of where the money goes, I call fraud.
The answer to this question and many more are in the man pages.
In the past OpenBSD has been pushing hard for things like priv sep, stack layout changes and smashing protection, address randomness, guard pages, minimum permissions everywhere, more randomness everywhere, etc. The result is a system where sloppy code is very likely to just crash before causing any harm. It helps towards making the system secure, and it also makes software development on the OS oh-so-nice.
I realize OpenBSD's security isn't all about features like the ones listed above, but can we look forward to some new exciting techniques that push the idea further?
Thank you for a superb free operating system. And thank you for pushing the software ecosystem towards better quality standards!
When will you make OpenBSD a comparable system to Windows Server 2012 R2? All other platforms are pathetic jokes compared to it's awesomeness. It's clearly the best in security, ease of use, available applications and affordability.
Where do you see OpenBSD heading in the compiler department? GCC 4.2.1 is now almost seven years old. Do you expect OpenBSD to keep using it indefinitely? If not, what is more likely - a switch to a GPL3 version of GCC or a switch to Clang? NetBSD and DragonFly BSD have taken the former approach, FreeBSD the latter. Is OpenBSD comfortable being the only major OS to stick with such an old compiler version, or will something have to be done about it eventually?
Hello !
What are your thoughts about Plan 9, how do you consider it ?
Do you still think that Linux is buggy and bloated, or have you changed your mind - a couple of years has passed since you said that.
are you going to abandon CVS ? I mean, even in the fairly conservative environment where *I* work, CVS is considered a dinosaur. Mercurial ? Subversion ? Git ? C'mon, man !
Religous speak to God. Insane are spoken to by God. When all shut up, one can finally hear Shostakovich in peace
It seems that in matters of secure computing, Mr de Raadt is seldom wrong.
Such behaviour appears to be unforgiveable.
By some.
--
BTW, Theo - thanks for the code goodness,
The ports tree has had package signing capability for some years, but it was left to users to implement.
New with 5.5 will be both signed kernels and filesets for the base OS, and signed packages, using a simple public/private key pair system with a newly developed signify(1) tool and related infrastructure and install/upgrade/sysmerge changes.
Do you see UNIX and the open web, such as ftp and email, being deprecated by proprietary services and protocols like dropbox and twitter, as the masses increasingly buy into these new technologies?
As a Canadian: had you gone to college in a less-than-generous country, for example the United States, would you have pursued higher education?
As software becomes more and more a part of our lives--from your experience with OS development and knowledge of security--what can we do to make the world a safer and more secure place?
What are some fallacies of security? What are things that people and organizations do which make them feel secure but really have no, or, limited impact? How might they go about things more effectively?
If you were to pass down the role of Release Engineer and project lead, what managerial/leadership advice would you give to your successor(s)?
You once said, "secure software only happens when all the pieces have 100% correct behavior." I was wondering if you could elaborate on this in the sense of shipping a product every 6 months and dealing with all the mess that upstream code may send your way. How much work is it integrating various "components from outside compliers" and how crucial is this process in creating a secure system?
Are you going to switch away from gcc?
C is old, not very well suited for multiple cores. As the future will bring us even more cores, do you think that a replacement of C with a more suited programming language will take place as *the* programming language of the future *nix OS?
Do you find this can be done with *nix like OSes or another type of OS?
OpenBSD is built using gcc 4.2, which is getting old by now.
While being old isn't an indication of being bad or wrong, is there any concrete plan
to either upgrade the base compiler, replace it with clang or some other compiler ?
Theo is the project and also runs most if not all of the infrastructure related to the OpenBSD and OpenSSH project from what I've read. Who will be your successor?
Thanks for taking the time to reply.
Wouldn't the OpenBSD project benefit from switching to Git? I know the answer is that centralized CVS workflow works best for you, but Git can be used with a CVS workflow if that's what you want. However, CVS commits are file based (which makes changes review needlessly hard IMHO), doing a bisect is a nightmare, it's slow, OpenCVS looks dead, CVS is regularly being shouted at on ports-changes@, and so on.
By default, OpenBSD includes binary firmware for wireless cards where no free firmware exists, such as many Intel cards. Do you think this poses any problem from a security point-of-view?
If Go were available for all the platforms supported by OpenBSD, do you think it would make sense switching some parts of the system from C to Go?
A bit ungainly, but that's necessary. Redhat tried to make it look neater and ended up with https://bugzilla.redhat.com/sh...
Hi Theo,
I know you have been very vocal against MAC because you considered it too complex to be of any practical help and would continue hardening OpenBSD from getting rooted. Many practitioners however take a more pragmatic stance as they point out that an OpenBSD box (in fact any box) which act as a network server could be vulnerable if the services that are provided were to be compromised. I compare this situation with a fortress, so OpenBSD is more like a traditional fortress which will fall if the attackers find a way to get inside and I consider the other camp to act more like a Ninja Castle, with a lot of hidden functionality that can be exactly enough when an attacker gets into the Castle. How could OpenBSD be augmented to include some functionality that make it harder to crack even if network servers are compromised? Do you have plans to include such functionality?
Carl, Thanks!
Time for a new Political party in the US (or two!) One is off the rails Other cant pony up a leader.
What hardware manufacturers does Theo recommend? I know some Taiwanese corps have released full documentation to OpenBSD but can't find out who these companies are.
what are your top 5 articles/papers about security ever?
Signed packages are a bit different to checking code signatures on executables/scripts at run time.
I run: Windows, OS X, Linux, FreeBSD. Just because you have a hammer, doesn't mean everything is a nail.
Theo, you left South Africa at the age of 9. Do you have any connection to the country? Have you been back? Do you think of yourself as a South African or a Canadian? Do you speak any Afrikaans? Places like Cape Town are beautiful and hike-worthy. I believe you enjoy hiking so was wondering if you've ever been back there for hiking.
Also, it is interesting that there are so many South Africans in tech. Elon Musk (Tesla), Mark Shuttleworth (Ubuntu), etc. Do you feel any connections to them due to a common heritage?
Have you ever tried FreeNode #openbsd?
Hello Theo, can you make source-changes@ mail diffs along with the commit logs? Having to extract the diff for each individual file via /cgi-bin/cvsweb or cvs log is rather tedious & inconvenient, and the end result is I don't review as many changes as I should. Having the complete diffs for each commit drop in my mailbox would make it so much easier to review things, and likely I'd at least skim through even the commits that do not sound very interesting to me. That would be more eyeballs to make sure things like goto fail do not accidentally slip in!
Are you or your team concerned at all with the upcoming switch (mainly from the Linux side of the OSS world) from Xorg to Wayland (or if you're in Canonical land Mir)? How will the OpenBSD team be dealing with such a drastic change? Are you planning to port wayland at all to OpenBSD in the near future or will continue using your own fork of X11?
On one hand OpenBSD is focused on security, on the other hand it use a lot of 'unsafe' programming languages (for example C) where security is only achieved thanks to expert programmers, but even experts have bad days and make mistakes..
Wouldn't it make sense to push the usage of programming language which provide more security by default?
For example, encouraging developers to use Ada instead of C..