Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenBSD 5.6 Released

Posted by timothy on from the making-the-world-a-better-place dept.

An anonymous reader writes Just as per the schedule, OpenBSD 5.6 was released today, November 1, 2014. The theme of the 5.6 release is "Ride of the Valkyries". OpenBSD 5.6 will be the first version with LibreSSL. This version also removed sendmail from the base system, smtpd is the default mail transport agent (MTA). The installer no longer supports FTP, network installs via HTTP only. The BIND name server will be removed from the OpenBSD base system. Its replacement comes in the form of the two daemons nsd(8) for authoritative DNS service and unbound(8) for recursive resolver service. OpenSSH 6.7 is included along with GNOME 3.12.2, KDE 4.13.3, Xfce 4.10, Mozilla Firefox 31.0, Vim 7.4.135, LLVM/Clang 3.5 and more. See a detailed log of changes between the 5.5 and 5.6 releases for more information. If you already have an OpenBSD 5.5 system, and do not want to reinstall, upgrade instructions and advice can be found in the Upgrade Guide (a quick video upgrade demo is here). You can order the 5.6 CD set from the new OpenBSD Store and support the project.

31 of 125 comments (clear)

  1. FTP by PlusFiveTroll · · Score: 4, Interesting

    >The installer no longer supports FTP

    With FTP acting as fragile as glass in the world of NAT and firewalls, I don't see this as a bad thing any longer. HTTP is reliable when serving large files these days.

    1. Re:FTP by natex84 · · Score: 2

      Agreed, except for HTTP when used in a web browser. I don't know how many times I've had large downloads fail in a browser (terminate too early, etc) and have had to fall back to running curl / wget manually instead.

    2. Re:FTP by nuckfuts · · Score: 2

      With FTP acting as fragile as glass in the world of NAT and firewalls...

      I've built several NAT firewalls using OpenBSD and pf. They make it very easy to accommodate both FTP clients and servers behind NAT, by providing a simple-to-use ftp-proxy.

      Easy to setup, works like a charm :)

    3. Re:FTP by Bert64 · · Score: 2

      What's more annoying is those download sites which force you to download in the browser, rather than giving you a link that you can pass to wget...

      I always used to run wget instead of using the browser, back in the days of dialup and netscape 4.x where the browsers would almost always crash long before a large download had completed. But there are also many cases today where downloading with the browser is just horrendously inconvenient, like when im downloading something only to upload it again to a colocated server (where my upstream speed at home is 1/10 of the download).

      --
      http://spamdecoy.net - free throwaway anonymous email - avoid spam!
    4. Re:FTP by TheRaven64 · · Score: 2

      They haven't 'embraced LLVM/Clang', they still ship GCC 4.2.1 or GCC 3.3.6 (depending on the architecture) and compile the base system with it. They ship LLVM/Clang as packages (ports).

      --
      I am TheRaven on Soylent News
  2. Thank you! by Celarent+Darii · · Score: 4, Interesting

    OpenBSD is fantastic. Thanks to the developers who spend so much time to make it work well!

    1. Re:Thank you! by Celarent+Darii · · Score: 5, Funny

      A non-extensive List of Reasons why OpenBSD is better than linux:

      1/ OpenBSD's mascot is a puffer fish. Puffer fish can kill you. Penguins are simply parasites living on property no one wants anyway.
      2/ OpenBSD's project leader has better hygiene than RMS
      3/ OpenBSD's project leader is also more dictatorial than Linus
      4/ It's BSD which means it has the karma of open source and you don't need lawyers managing each release cycle.
      5/ OpenBSD assumes the world is a bad place. Linux is just hoping no one will do something bad.
      6/ It doesn't update stuff simply because it can, but because it has to. Linux just updates stuff because they can, and stuff breaks.

      Perhaps someone else has something to add?

      Seriously, it just works. If you like what you have, keep using it! Not like I'm going to force you to quit using whatever you have.

    2. Re:Thank you! by X0563511 · · Score: 4, Informative

      2. Does not require PulseAudio, but can still output multiple channels from multiple apps at the same time. This was always a problem with ALSA.

      dmix says hello, while flipping PA (and Pottering) the bird.

      --
      For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
    3. Re: Thank you! by eneville · · Score: 2

      I admit that ZFS has some impressive features, but it also requires oodles of RAM. Don't discount openbsd for not having it, there are some instances where ZFS is more of a hinderance than an advantage. Small network routers being one of them, for that OpenBSD is perfect with its feature-full pf (freebsd lags a few versions behind, though that version is also quite capable).

      --
      Why UNIX?
    4. Re: Thank you! by eneville · · Score: 2

      By current off the shelf standards no, 8G isn't particularly unusual. However, I've run OpenBSD on *much* less. Heck, I even have ZFS running on less, it's just not that much fun when you have to retune it because of memory hogging. Would be good if this aspect could be resolved then I'd use it more frequently.

      --
      Why UNIX?
    5. Re:Thank you! by Anon+E.+Muss · · Score: 2, Interesting

      ... check out OpenBSD before checking out FreeBSD, and I cannot stress this enough. FreeBSD developers don't use their own operating system; they run it in a Virtual machine on their Macs, and it shows.

      Citation needed.

      Suspend/resume has been broken there since 2008, and drivers for any recent Intel graphics adapter will not run (you cannot switch from Xorg to a console and back) properly.

      Yeah, it can suck to run a server-focused OS on a desktop/laptop.

      FreeBSD devs do not care about their OS

      This is objectively false. Any devs working for free must care, of they'd hack on something else. Any devs being paid must have an employer who cares. The problem is that the people hacking/funding FreeBSD don't care about the same parts of the system that you do.

      --
      The key sequence to access my Slashdot bookmark in Firefox is Alt-B-S. I don't believe this is a coincidence.
    6. Re:Thank you! by Bengie · · Score: 3, Informative

      You can thank OpenBSD for Linux, and FreeBSD, 64bit modes finally working. OpenBSD has a history of spearheading new tech and working out the bugs. Both Linux and FreeBSD were afraid of switching to 64bit because it would break some software. OpenBSD didn't give a crap, so lots of programs got their bug fixes. Same thing with ASLR, and lots of other modern features.

    7. Re:Thank you! by torsmo · · Score: 4, Funny

      OpenBSD's project leader is also more dictatorial than Linus

      But unlike Linus, who can throw industrial-grade Finnish profanities at his minions, Theo's Afrikaans cuss-word-foo is weak. Something along the lines of "Jy was uit jou ma se gat gebore want haar poes was te besig" wouldn't go amiss, methinks.

    8. Re:Thank you! by jeremyp · · Score: 2

      Perhaps someone else has something to add?

      7/ systemd doesn't run on it.

      --
      All I want is a secure system where it's easy to do anything I want. Is that too much to ask ~~ Randall Munroe
    9. Re:Thank you! by gavinatkinson · · Score: 2

      FreeBSD developers don't use their own operating system; they run it in a Virtual machine on their Macs, and it shows.

      Not true. I'm using it right now.

      Suspend/resume has been broken there since 2008, and drivers for any recent Intel graphics adapter will not run (you cannot switch from Xorg to a console and back) properly.

      Not true, I can suspend/resume just fine, thanks. Your comment about not being able to switch between X and console suggests your knowledge is at least two years out of date. It was true for a short while in -CURRENT (the development branch) but never the case in a -RELEASE version.

      FreeBSD devs do not care about their OS; OpenBSD devs actually use their system.

      Also easily provably not true.

  3. pf by brynet · · Score: 5, Informative

    Also related, Peter N. M. Hansteen is auctioning off the first signed copy The Book of PF, 3rd edition. He will be supporting the OpenBSD project by donating the amount raised to the OpenBSD Foundation.

    http://bsdly.blogspot.com/2014...

  4. Thank you! by sunderland56 · · Score: 2, Interesting

    [Citation needed]

    Seriously - is there anything that OpenBSD does better than ?

    Internet slide shows suck, but a "10 reasons OpenBSD is better than linux" would help out a lot here.

  5. Rde of the Valkyries? by plopez · · Score: 5, Funny

    Seriously? The last ditch and unsuccessful attempt by the forces of heaven to prevent the destruction of Valhalla is not a good omen. The forces of good are overwhelmed by the forces of evil despite heroic efforts. I think Carl Jung pointed out that the Norse mythos was the only one he knew of where good does not triumph in the end. Or perhaps it was a reference to 'Apocalypse Now'. In ether case, as I said, not a good omen.

    --
    putting the 'B' in LGBTQ+
    1. Re:Rde of the Valkyries? by plopez · · Score: 5, Funny

      I don't think frost giants are good in any mythology.

      --
      putting the 'B' in LGBTQ+
    2. Re:Rde of the Valkyries? by geminidomino · · Score: 3, Interesting

      I'm not sure about Wagner's operas, but don't forget the end of the Ragnarok myth: Yes, the 9 worlds are frozen in a relentless year-long winter, then destroyed in a war where gods and ettins alike are almost completely wiped out, it's pretty glum stuff. But after that's all over, you've got the two people hiding in the world tree who come out, meet Baldur and Hodr (now back from the dead) and Thor's kids, and start over.

      It's like finally being able to throw out that crufty old pascal code-base and re-write it in $WHATEVER_LANGUAGE_YOU_WANT_THAT_DOESNT_START_A_FLAMEWAR. Not a bad omen at all. :)

    3. Re: Rde of the Valkyries? by jd · · Score: 2

      Apparently, they're the good guys in the Book of the Three Letter Agencies.

      --
      It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
  6. Re:Systemd? by Delicious+Pun · · Score: 3, Funny

    The best feature systemd has is that it is stuck in linux land. Let the kids have their bleeding edge shiny. Everyone else has the BSDs.

    Are you a systemd fanboy? I don't give a fuck what you think.

  7. Removed sendmail ... smtpd is the MTA by fnj · · Score: 5, Insightful

    Just about EVERY SMTP MTA is named "smtpd". Sendmail's is, but so it Postfix', and so is OpenSMTPD's.

    In case anyone wants to know, OpenSMTPD replaces sendmail as the default MTA in OpenBSD 5.6. Now how hard was that, to actually state a piece of useful information instead of a nonsense phrase conveying nothing?

  8. Thank you! by Anonymous Coward · · Score: 5, Interesting

    1. OpenBSD supports laptops, specifically Thinkpads, better than any other operating system not called Windows. Suspend/resume works, instantly.
    2. Does not require PulseAudio, but can still output multiple channels from multiple apps at the same time. This was always a problem with ALSA.
    3. PF is a lot easier to configure than ipfw. It is the firewall of OSX.
    4. Man pages for EVERYTHING.
    5. A simple init system. Whether or not it is better than systemd is debatable.
    6. Not tied to any one desktop environment. Gnome 3.x is well-supported, but not requisite for anything.
    7. The first place you will find updates for new wireless cards, OpenSSH, LibreSSL, libc (Android actually uses this instead of glibc).
    8. Full disk encryption without requiring an unencrypted boot partition, unlike Linux.
    9. Simple, text-based config files.
    10. No need for HAL or *Kit or whatever flavour of the week abstraction layer is needed for interfacing with your hardware.

    OpenBSD is not for everybody; there is a steep learning curve and a lot of software is not supported. But if you need a simple operating system that doesn't change much from release to release, it's worth checking out. If you are looking for an alternative to systemd (which I honestly have no problem with), check out OpenBSD before checking out FreeBSD, and I cannot stress this enough. FreeBSD developers don't use their own operating system; they run it in a Virtual machine on their Macs, and it shows. Suspend/resume has been broken there since 2008, and drivers for any recent Intel graphics adapter will not run (you cannot switch from Xorg to a console and back) properly. FreeBSD devs do not care about their OS; OpenBSD devs actually use their system.

  9. Re: Systemd? by fnj · · Score: 3, Informative

    Has our AC determined whether Kerberos is in OpenBSD ports? I am reading "Kerberos has been removed from the base system. Kerberos support will be available via a package."

  10. Packed my bags by Anonymous Coward · · Score: 3, Interesting

    When they introduced that SystemD trash in Linux, I packed my bags and moved to OpenBSD. Have not looked back.

  11. Re:Systemd? by eneville · · Score: 2

    If something works, what like gas guzzlers? Yeah, time has changed, it *is* possible to get more than 15mpg. However, systemd sucks right now.

    --
    Why UNIX?
  12. Re:Apache by fnj · · Score: 3, Insightful

    what's the big deal whether something is in base or ports? it's the same team that maintains things.

    If you say it's the same team that works on bases system and ports, then I don't have the knowledge to take issue with that. I would not have guessed so, though.

    At any rate, OpenBSD has this to say: "The ports & packages collection does NOT go through the thorough security audit that OpenBSD follows. Although we strive to keep the quality of the packages collection high, we just do not have enough human resources to ensure the same level of robustness and security."

    I think it's a pretty big deal.

  13. Re:Systemd? by unixisc · · Score: 2

    OS-X is not 1970's Unix by any stretch of imagination. It's a descendent of NeXTstep, or in other words, its base system is a descendant of Mach and BSD. Unix, as per the 70s definition, was SVR4.x. So the versions that were really Unix - until the Unix certification programs kicked in - were Solaris and SCO. BSD based Unixes didn't count - whether they were the original BSDs, or OSF/1, or SunOS or Ultrix.

  14. Re:Does it fix the performance issues? by TheRaven64 · · Score: 2, Interesting

    OpenBSD's malloc implementation is noticeably slower than anyone else's. It is, however, more likely to make certain categories of memory management error crash the program (rather than leaving it in a state where an attacker might be able to exploit the bug). Unfortunately, most modern exploit techniques don't rely on the invariants that OpenBSD's malloc() breaks, so you end up paying the performance cost without getting much by way of security gain (unless your attacker is a script kiddie who is using 5-year-old scripts).

    --
    I am TheRaven on Soylent News
  15. Thank you! by dbuckman · · Score: 4, Informative

    I second the thank you to the developers.

    What I like about OpenBSD.

    There are no black boxes. I can do a "ps aux" and very easily understand every process that is running and it only takes up one page on the terminal. I use linux for my desktop/laptop and it is great for that but there are pages of processes running and I have to hunt to figure out what some of them are. If I want to understand the boot process it is well documented and I can edit a few files and figure it out.

    PF. PF is a great firewall with some amazing features.

    Secure. Again only processes running that I want running.

    Small footprint. I just downloaded the 5.6 AMD64 iso. 227mb. It got smaller from 5.5 to 5.6. You never see that.

    I find it a pleaser to work with. It doesn't make a lot of assumptions for you. Easy install. Give it a try.