I'm running 5.1 on my Thinkpad T20 almost without any problems.
Which Thinkpad Model do you use? Maybe you can find some info at http://gerda.univie.ac.at/freebsd-laptops/, which lists not only Thinkpad laptops.
According to the comment on http://daily.daemonnews.org/view_story.php3?story_ id=3539 the JFS code itself isn't ready yet, but the jfstools are. So you can take a JFS disk from a Linux box and use the jfstools, but you can't mount the JFS right now.
The checksum is part of the FreeBSD ports tree and couldn't be affected by the bad guys, as it is local on your machine. OTOH, if you would just say "make NO_CHECKSUM=yes" you'd ignore the warning and run just into trouble:-)
I'm by far not a very good C programmer or security expert, but from what I have seen this thing does the following:
It differs from a "clean" openssh package by one line in the Makefile and an additional sourcefile.
The sourcefile is very cryptic and if you wouldn't know you'd think it's just an ssh source file like any other.
The suspicious line in the Makefile compiles the sourcefile, executes it. This binary itself writes out some shellscript, which in turn generates another C source file, which gets compiled and executed.
The additional line in the Makefile and the additional source file are deleted.
This last binary opens up a socket to some server and, depending on the input it gets from the socket, exits, respawns or opens a shell (/bin/sh).
So the backdoor is in the Makefile, not the OpenSSH software itself.
One thing to mention is that IMHO this is not a fault of OpenBSD. As anyone can read in their FAQ www.openbsd.org (and ftp.openbsd.org) is run on Solaris.
Concerning native Java:
According to this interview with Robert Watson it will be available shortly ofter 4.5-RELEASE. He says "it's in final conformance testing".
HTH.
Re:Debian is not Linux
on
Debian NetBSD
·
· Score: 1
growfs will let you grow filesystems (which I already did, and it works fine), but I don't think it also lets you shrink them. It will especially come in handy when you have some concatenated vinum volumes (the FreeBSD LVM and RAID implementation), that you want to enlarge. You might take a look at growfs(8).
You know what I was talking about, a Dot-Zero release is most likely a little experimental and not intended for production servers (that's what the FreeBSD folks said themselves in several announcements), but all in all 5.0-RELEASE will hopefully bring in a lot of new features.
Slashdot Mirror
I'm working on it. I think it's quite stable right now, but some features are still missing. I really hope to get it done before 5.3.
I'm running 5.1 on my Thinkpad T20 almost without any problems. Which Thinkpad Model do you use? Maybe you can find some info at http://gerda.univie.ac.at/freebsd-laptops/, which lists not only Thinkpad laptops.
According to the comment on http://daily.daemonnews.org/view_story.php3?story_ id=3539 the JFS code itself isn't ready yet, but the jfstools are. So you can take a JFS disk from a Linux box and use the jfstools, but you can't mount the JFS right now.
This is why I like the BSD license - it doesn't give reason for a shit load of /. comments.
I just wanted to prevent the upcoming "OpenBSD? Har har har, secure as Cheddar Cheese or what?" flamewars.
The checksum is part of the FreeBSD ports tree and couldn't be affected by the bad guys, as it is local on your machine. OTOH, if you would just say "make NO_CHECKSUM=yes" you'd ignore the warning and run just into trouble :-)
This incident is not the fault of OpenBSD. Check their FAQ, www.openbsd.org (and so ftp.openbsd.org) is run on Solaris.
So the backdoor is in the Makefile, not the OpenSSH software itself.
One thing to mention is that IMHO this is not a fault of OpenBSD. As anyone can read in their FAQ www.openbsd.org (and ftp.openbsd.org) is run on Solaris.
When I first read the story title I thought: "What's so new about burning ISO images to CD-R?"
Concerning native Java: According to this interview with Robert Watson it will be available shortly ofter 4.5-RELEASE. He says "it's in final conformance testing". HTH.
GNU BSD is an oxymoron, isn't it? :-)
growfs will let you grow filesystems (which I already did, and it works fine), but I don't think it also lets you shrink them. It will especially come in handy when you have some concatenated vinum volumes (the FreeBSD LVM and RAID implementation), that you want to enlarge. You might take a look at growfs(8).
You know what I was talking about, a Dot-Zero release is most likely a little experimental and not intended for production servers (that's what the FreeBSD folks said themselves in several announcements), but all in all 5.0-RELEASE will hopefully bring in a lot of new features.
It is truly remarkable and rather unusual that they revealed that there's a FreeBSD working under the hood.
It's nice to see that FreeBSD gets more and more recognition und I hope 5.0 will be a milestone, once it is out next year. Keep up the good work.