OpenBSD 5.7 Released

← Back to Stories (view on slashdot.org)

Posted by Soulskill on Friday May 1, 2015 @04:20AM from the onward-and-upward dept.

An anonymous reader writes: Right on schedule, OpenBSD 5.7 was released today, May 1, 2015. The theme of the 5.7 release is "Source Fish." There are some big changes in OpenBSD 5.7. The nginx httpd server was removed from base in favor of an internally developed httpd server in 5.7. BIND (named) was retired from base in 5.7 in favor of nsd(8) (authoritative DNS) and unbound(8) (recursive resolver). Packages will exist for BIND and nginx. This version includes a new control utility, rcctl(8), for managing daemons/services, USB 3 support and more. See a detailed log of changes between the 5.6 and 5.7 releases for more information. If you already have an OpenBSD 5.6 system, and do not want to reinstall, upgrade instructions and advice can be found in the Upgrade Guide. You can order the 5.7 CD set from the new OpenBSD Store and support the project.

43 of 80 comments (clear)

Min score:

Reason:

Sort:

Re:wow first time by antiperimetaparalogo · 2015-05-01 04:34 · Score: 1

first post??
Yes, first post, i confirm it - as i confirm that the "confirmed dead" (open/free/net/e.t.c.) BSD is alive enough.

--
Antisthenes: "Wisdom begins by examining the words/names." - excuse my English, i am (slightly...) better with my Greek!
Cool by nult · 2015-05-01 04:35 · Score: 1

Looking forward to upgrading ! I think the rcctl is a great new addition to the OS.
They forgot the best feature.... by Etcetera · 2015-05-01 04:39 · Score: 5, Insightful

No systemd ;)
Seriously, though. Although I can't see myself switching wholesale back to BSD, and the long term *nix-esque commodity (non-specialized) ecosystem will revolve around Linux for the foreseeable future, there are enough people frustrated by the OS vendor directions that it's good to have a backup.
Think of BSD as a third party, to keep the primary two enterprise Linux vendors in check should they decide to ignore their constitu^H^H^H^H^H^H^H users too much.

--
Hire a Linux system administrator, systems engineer,
1. Re:They forgot the best feature.... by Anonymous Coward · 2015-05-01 07:06 · Score: 1
  
  BSD is a major commodity ecosystem for end-consumer products. I'd wager that there are more MacBooks and iPods out there running OSX and iOS flavors of BSD than there are Linux ones. They just suck in the server space, though, and that's where Linux cannot at the moment be questioned, let alone defeated.
2. Re:They forgot the best feature.... by QuietLagoon · 2015-05-01 08:30 · Score: 4, Insightful
  
  BSD is a major commodity ecosystem for end-consumer products. I'd wager that there are more MacBooks and iPods out there running OSX and iOS flavors of BSD than there are Linux ones. They just suck in the server space, though, and that's where Linux cannot at the moment be questioned, let alone defeated.
  My FreeBSD servers run just fine, thank-you. I moved those servers from Linux to FreeBSD a number of years ago, and never had the need to look back.
3. Re:They forgot the best feature.... by BitZtream · 2015-05-01 08:44 · Score: 1
  
  Mean while ... the BSD people keep thinking of Linux as a 'third party' they'd not let their worst enemy run.
  Linux is for the unenlightened. Running a Linux file server or firewall on a heavy network ... there you're just showing how ignorant you are.
  Linux on a desktop with shitty hardware that BSD doesn't support ... sure, its great.
  
  --
  Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
4. Re:They forgot the best feature.... by Etcetera · 2015-05-01 08:51 · Score: 2
  
  BSD is a major commodity ecosystem for end-consumer products. I'd wager that there are more MacBooks and iPods out there running OSX and iOS flavors of BSD than there are Linux ones. They just suck in the server space, though, and that's where Linux cannot at the moment be questioned, let alone defeated.
  Ironically, systemd is quite well suited for system designers creating embedded products, or those where there's effectively no "middle layer" between the naive "true end user" and the original builder/vendor -- a locked down iOS or an OS X system where the terminal-level control isn't needed.
  The folks most objecting to systemd are in the server space -- true OS system admins who design and integrate the architecture, and are responsible for keeping things up and running.
  Yeah, systemd+busybox might be perfect for the next OpenWRT embedded IoS device -- but it's not what I'll want on the next massive Dell server I'm responsible for at work.
  
  --
  Hire a Linux system administrator, systems engineer,
5. Re:They forgot the best feature.... by Aighearach · 2015-05-01 09:59 · Score: 1
  
  Linux on a desktop with shitty hardware that BSD doesn't support ... sure, its great.
  NetBSD runs everywhere, even shitty hardware.
  Everything on the "linux desktop" is portable stuff that runs fine on *BSD.
6. Re:They forgot the best feature.... by Anonymous Coward · 2015-05-01 12:57 · Score: 1
  
  hear, hear. people always are surprised when I tell them I run OpenBSD as my desktop. It's surprisingly good. I think it's the best BSD if you want current gnome support and their Python/Ruby support are also really good and current.
7. Re:They forgot the best feature.... by Anonymous Coward · 2015-05-01 12:59 · Score: 1
  
  yeah, no way they suck in server space. FreeBSD serves all of netflix, plus my openbsd servers are nicely locked down so I can sleep well at night without worrying about security.
8. Re:They forgot the best feature.... by zlogic · 2015-05-02 07:08 · Score: 1
  
  Probably a stupid question, but who do you consider to be the other (non-RedHat) enterprise Linux vendor?
Yay! by Anonymous Coward · 2015-05-01 04:53 · Score: 3, Informative

Nice to see these guys continually putting out good stuff. There also seems to be a Google Summer of Code to get the HAMMER2 filesystem in OpenBSD. If this happens I can definitely see swtiching our systems over to OpenBSD from Linux. We have been waiting for a real filesystem with checksumming, compression and deduplication features in OpenBSD for some time now.
1. Re:Yay! by Anne+Thwacks · 2015-05-01 08:07 · Score: 1
  
  Possible Poettering Posture?
  
  --
  Sent from my ASR33 using ASCII
Re:BSD is dying by Anonymous Coward · 2015-05-01 04:57 · Score: 2, Funny

According to comments on Slashdot 95% or so of Linux server admins have already switched or is in the process of switching to OpenBSD.
Re:BSD is dying by danbob999 · 2015-05-01 05:17 · Score: 1

Very true. Was Debian 8.0 even announced on Slashdot?
New HTTP daemon by Aethedor · 2015-05-01 05:17 · Score: 1

I understand they replaced nginx with something different. But why a half-finished webserver that doesn't even support things like URL rewriting. For those who seek a secure webserver, but with features to properly support the modern website/framework/CMS, try the Hiawatha webserver.

--
It doesn't have to be like this. All we need to do is make sure we keep talking.
1. Re:New HTTP daemon by Anonymous Coward · 2015-05-01 05:33 · Score: 2, Informative
  
  nginx is still available as a port, as well as apache.
2. Re:New HTTP daemon by brynet · 2015-05-01 05:40 · Score: 3, Informative
  
  It's not a "half-finished" server, it's a new server written using OpenBSD's existing development practices, sharing code with relayd(8) in base. For OpenBSD httpd(8), 'featuritis' is being avoided so that the codebase remains simple and maintainable.
  https://github.com/reyk/httpd/...
  I've never heard of Hiawatha, but the GPL licencing makes it inappropriate for the base system. It is available as a package and in the ports, along with nginx and many other servers.
3. Re:New HTTP daemon by Aethedor · 2015-05-01 05:41 · Score: 1
  
  No, most people want to run a simple PHP website (Wordpress, Drupal, etc). But since almost every modern CMS and framework require at least a simple form of URL rewriting (rewrite every request for a non-existig file to /index.php), OpenBSD's httpd is a no-go.
  
  --
  It doesn't have to be like this. All we need to do is make sure we keep talking.
4. Re:New HTTP daemon by brynet · 2015-05-01 06:01 · Score: 4, Informative
  
  OpenBSD's httpd(8) supports HTTP redirects, and it certainly seems possible to redirect requests to i.e: php-fpm.
  location "*.php" {
  fastcgi socket "/path/to/php-fpm.sock"
  }
  location "/" {
  block return 301 "/index.php"
  }
  Reyk Floeter (reyk@) has a Wiki with some additional example configurations, contribute more:
  https://github.com/reyk/httpd/...
5. Re:New HTTP daemon by Anonymous Coward · 2015-05-01 08:00 · Score: 1
  
  Many of OpenBSD's programs have the titles of no known security flaws ever. Of the ones that do have flaws, they are at rates magnitudes less than industry average. Don't expect features, just bare minimum functionality that OpenBSD requires. If the program also works for you, then you're in luck.
  
  OpenBSD devs have stated many times, they only end users they care about are themselves. The fact that their software is useful to others is just luck for everyone else.
6. Re:New HTTP daemon by Noryungi · 2015-05-01 08:04 · Score: 4, Insightful
  
  No, most people want to run a simple PHP website (Wordpress, Drupal, etc). But since almost every modern CMS and framework require at least a simple form of URL rewriting (rewrite every request for a non-existig file to /index.php), OpenBSD's httpd is a no-go.
  Err... If you are running PHP on OpenBSD, you have COMPLETELY missed the point of OpenBSD in the first place.
  Seriously, though. PHP?
  
  --
  The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
7. Re:New HTTP daemon by Aethedor · 2015-05-01 08:47 · Score: 1
  
  And there you have the reason why almost nobody uses OpenBSD.
  
  --
  It doesn't have to be like this. All we need to do is make sure we keep talking.
8. Re:New HTTP daemon by Noryungi · 2015-05-01 08:56 · Score: 2
  
  And there you have the reason why almost nobody uses OpenBSD.
  Yeah, well, I use OpenBSD, and I know a ton of people who use it for, say, firewalls, routers and other. And, yes, even web servers an other stuff.
  Seriously, man: PHP? Really?
  
  --
  The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
9. Re:New HTTP daemon by Aethedor · 2015-05-01 09:07 · Score: 1
  
  Seriously, man: OpenBSD? Really?
  As you can see, pointless flaming can be done about anything. If you want to critcize PHP, come up with some proper and valid arguments. Otherwise, you're nothing more than a loudmouth fanboy. I have several PHP websites running for many years, without a single hack, without a any significant downtime (besides server maintaince) and with proper speed. PHP is just a tool, it's the developer that makes it a good or bad website.
  
  --
  It doesn't have to be like this. All we need to do is make sure we keep talking.
10. Re:New HTTP daemon by Anonymous Coward · 2015-05-01 09:19 · Score: 1
  
  HTH, HAND
11. Re:New HTTP daemon by Aighearach · 2015-05-01 10:03 · Score: 1
  
  Right, exactly, the default one is for bare minimum use. If you're hosting some modern what-the-what, then you install a full size web server. If you just need to serve up some HTML on a server that mostly does something else, then this is great.
  If you are actually hosting something, using a default bare-bones httpd is a no-go. You will have to make a choice between web server packages, and install one. Probably configure it, too.
12. Re:New HTTP daemon by Anonymous Coward · 2015-05-01 12:34 · Score: 1
  
  OpenBSD does not care about us mortals. They are the reason why we have ASLR, PIE, 64bit, and many other features in most OSes. While the features existed, they were not pushed out by default because programs would randomly break for no apparent reason. OpenBSD took a step forward and made system designs that would cause programs that make use of undefined programming, break. This made it very easy to quickly find most flaws, allowing Linux to eventually go 64bit, among other things.
  
  Unlike most Linux ports, much of BSD is shared among the flavors. A lot of work gets shared, even if not all at the same time. There are forks of FreeBSD explicitly forked for the purpose of security testing. They try new exciting things, if they work, they port them back to FreeBSD. You don't see this often in Linux.
13. Re:New HTTP daemon by Anonymous Coward · 2015-05-01 12:56 · Score: 1
  
  Unlike other packages and OS's, Theo wants the most secure OS possible. In order to do that the default packages need to be as secure as possible. They moved to their own HTTPd to ensure that it's secure out-of-the-box.
  You're missing a key point here. Just because other packages take 4 years to "harden" doesn't mean that younger packages are crap. The quality has nothing to do with age but everything to do with quality of design and ensuring that all 'i' are dotted and 't''s are crossed.
  The reason for vulnerabilities are do to lazy programming or panic programming where a feature needs to ship tomorrow, who cares how it's implemented. If done correctly, vulnerabilities can be eliminated. There are finite reasons for vulnerabilities, if proper practices are followed, when processing data from the outside world will not cause security issues. There are unit tests that can ensure that cases are covered correctly.
  For all we know the daemon has been run through attacks for a while now, possibly your 4 years, before being released.
  You're high-horse comment simply shows that you're a shill, troll, or have no idea what OpenBSD stands for. I'd recommend you go back in your cave.
14. Re: New HTTP daemon by Aethedor · 2015-05-01 15:53 · Score: 1
  
  I knew you would come up with these articles. Those troll articles are filles with incorrect claims, things that are not PHP specific and outdated stuff. You only believe those stories because you want to believe them. Please, grow up.
  
  --
  It doesn't have to be like this. All we need to do is make sure we keep talking.
15. Re: New HTTP daemon by Aethedor · 2015-05-01 15:55 · Score: 1
  
  Systemd, yuck, no thanks. It seriously makes me consider moving to FreeBSD.
  
  --
  It doesn't have to be like this. All we need to do is make sure we keep talking.
Re:BSD is dying by Anonymous Coward · 2015-05-01 05:20 · Score: 4, Funny

Yes it was. But so far no one has downloaded it. Even the Debian developers switched to OpenBSD because of Systemd.
Switch and leave the drama behind by Anonymous Coward · 2015-05-01 05:23 · Score: 1

I switched from Fedora to NetBSD. Feels good knowing the OS isn't turning inside out every month. Oh yeah, I hate LVM too. For a desktop? What's wrong with a swap and a /? Nothing is wrong, never was.
1. Re:Switch and leave the drama behind by shoor · 2015-05-01 05:44 · Score: 2
  
  There was plenty of drama in the 90s around the various BSDs (FreeBSD, NetBSD, and OpenBSD) before they split apart. You could go look at the old Usenet postings to see what it was like.
  
  --
  In theory, theory and practice are the same; in practice they're different. (Yogi Berra & A. Einstein)
Re:Debian's opinion on "anti-systemd people" by Anonymous Coward · 2015-05-01 06:13 · Score: 1

Yup, definitely a good reason to switch. Russell Coker is an idiot. Linking gender identity to systemd makes as much sense as linking Doc Marten's to skinheads. Yeah, some angry nuts emailed him and really do appear to be homophobic woman haters. And Doc Marten's are popular with skinheads.
Does that mean Doc Marten's are a shitty shoe? Does that mean that systemd is a good idea?
Who gives a shit. I'm leaving the drama behind and choosing freedom from the insanity instead. Oh, and Fuck You Russell for suggesting I hate women or homosexuals because I don't like systemd. You're a complete shithead.
Time To Give It a Try by organgtool · 2015-05-01 07:50 · Score: 3, Interesting

I was going to upgrade my servers to Ubuntu 15.04 until I learned that they integrated SystemD into that release, so now is a great time to evaluate OpenBSD in a virtual machine. Maybe OpenBSD could create a section on their web site that provides documentation on the advantages of BSD over Linux as well as some advice on how to avoid common pitfalls that Linux users typically make in BSD. Just for fun, they could call that section "Because of SystemD". In any event, I'm curious to see what I'll miss coming from the Linux world after spending some time in OpenBSD.

On a semi-related note: what's with replacing nginx with their own http daemon? Is the NIH syndrome spreading to OpenBSD as well?
1. Re:Time To Give It a Try by Noryungi · 2015-05-01 08:12 · Score: 2
  
  [...] Maybe OpenBSD could create a section on their web site that provides documentation on the advantages of BSD over Linux as well as some advice on how to avoid common pitfalls that Linux users typically make in BSD. [...] In any event, I'm curious to see what I'll miss coming from the Linux world after spending some time in OpenBSD.
  On a semi-related note: what's with replacing nginx with their own http daemon? Is the NIH syndrome spreading to OpenBSD as well?
  Nope, they have explained at legnth that nginx was getting too big, and its developpers too unresponsive, for it to be a part of base anymore. That was also the case with the previous web server, which was an old version of Apache with a lot of patches.You can still install nginx from ports though and Apache is in there somewhere as well.
  As far as documentation is concerned, please refer to the OpenBSD FAQ:
  http://www.openbsd.org/faq/faq...
  And:
  http://www.openbsd.org/faq/faq...
  What will you miss? Probably not much, except for the eye candy. OpenBSD is a really good and complete OS, and its quality is excellent.
  
  --
  The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
2. Re:Time To Give It a Try by Anonymous Coward · 2015-05-01 13:04 · Score: 1
  
  I would add to this there are some differences between Linux and BSD in terms of tools/command line switches for some administrative tasks, etc. I highly recommend the Absolute OpenBSD book by Michael Lucas. Great ref to have on hand when for Linux users switching over!
3. Re:Time To Give It a Try by thegarbz · 2015-05-01 19:39 · Score: 1
  
  I'm curious to see what I'll miss coming from the Linux world after spending some time in OpenBSD
  You'll miss nothing. As someone who won't consider trialling an upgrade because of some program and have absolutely no idea whether it will work or not, and then will happily throw the metaphorical baby out with the bathwater and switch to a completely different OS... you won't miss a thing.
Re: by Anonymous Coward · 2015-05-01 08:00 · Score: 1

Still wish OpenSSL would have been renamed to WideOpenSSL
Re:Banning Abusers is the OpenSource way by Anonymous Coward · 2015-05-01 09:13 · Score: 1

Not that I'd want to, but as a white cis male, am I even allowed to run systemd? Or is my oppression not welcome?
Re:BSD is dying by phantomfive · 2015-05-01 14:52 · Score: 1

It's hard to believe that page is not satire.

--
"First they came for the slanderers and i said nothing."
Re:BSD is dying by Zaelath · 2015-05-03 16:38 · Score: 1

Spread the word about what? How someone has a ridiculous blog that uses logic akin to:
All dogs have four legs.
Cats have four legs.
Therefore, cats are dogs.
?