ummm.. I've patched openssh on all my freebsd boxes more times than I've had to patch apache, sendmail and bind put together. Don't belive Theo's "auditing" propaganda.
in FreeBSD you have a "kernel security level"
man securelevel
The kernel runs with four different levels of security. Any super-user process can raise the security level, but no process can lower it. The security levels are:
-1 Permanently insecure mode - always run the system in level 0 mode. This is the default initial value.
0 Insecure mode - immutable and append-only flags may be turned off. All devices may be read or written subject to their permissions.
1 Secure mode - the system immutable and system append-only flags may not be turned off; disks for mounted filesystems,/dev/mem, and/dev/kmem may not be opened for writing; kernel modules (see kld(4)) may not be loaded or unloaded.
2 Highly secure mode - same as secure mode, plus disks may not be opened for writing (except by mount(2)) whether mounted or not. This level precludes tampering with filesystems by unmounting them, but also inhibits running newfs(8) while the system is multi-user. In addition, kernel time changes are restricted to less than or equal to one second. Attempts to change the time by more than this will log the message ``Time adjustment clamped to +1 second''.
3 Network secure mode - same as highly secure mode, plus IP packet filter rules (see ipfw(8) and ipfirewall(4)) cannot be changed and dummynet(4) configuration cannot be adjusted.
I've been running FreeBSD and OpenBSD for a couple of years now, and haven't ever installed NetBSD before.. It's true, FreeBSD does by default take a little more room than OpenBSD (not near as bad as Linux), but I think it's worth it.. FreeBSD's configuration files and everything make much more sense to me than OpenBSD's..
The funniest part about this is that when you plan on supporting all the browsers from the start it's not that much extra work... Unless you're doing dhtml/javascript menus, but I code a long time ago that I've tested under ie, ns4, ns6, moz, and opera. Works fine with all those browsers, and I copy-and-paste it when I do ew sites that require dhtml/javascript.
have you made sure to specify "tag=." for each port category?? ie: "ports-all tag=." Otherwise, it will remove all the ports, and re-download all of them.
okay, first I'll explain how ports work... then I'll tell show you that your numbers are wrong.
to download new ports you use cvs. they're broken down into categories. www, ftp, sysutils, audio, etc. when you run your cvs script, it will always download files called: Makefile, distinfo, pkg-comment, pkg-descr, and pkg-plist. Occasionally it will create a "files" directory and include patches. It always downloads the patches, because they're generally small anyways.
Just to have exact figures I downloaded all of the ports while writing this (I usually don't download ports having to do with japanese, chinese, etc.)
Here's what I found:
/usr/ports# find . -type d -maxdepth 1 -ls
returns 54 directories, one is "." and four don't count. (they're used by FreeBSD)
/usr/ports# find . -type d -maxdepth 2 | wc -l
returns 7111 results. Now we need to subtract the 55 "."'s and all of those "."'s have a "." of their own.
This is true, a friend of mine made the mistake of trying to update his warez copy of office 2000 from the officeupdate site.. What a nightmare.. He wound up having to format and re-install windows/office..
no, you know what.. he's fucking right. if you knew anything about FreeBSD, you'd know that standard packages are installed in/usr/bin, where as non-standard packages (installed from ports) get installed in/usr/local/bin.
Slashdot Mirror
this pdf compares how journaling file sytems compare to non-journaling systems like ffs or freebsd's soft updates.
ummm.. I've patched openssh on all my freebsd boxes more times than I've had to patch apache, sendmail and bind put together. Don't belive Theo's "auditing" propaganda.
yes, but developers that don't have money for another box probably don't have money for windows licenses either.
in FreeBSD you have a "kernel security level" man securelevel
/dev/mem, and /dev/kmem may not be opened for writing; kernel modules (see kld(4)) may not be loaded or unloaded.
The kernel runs with four different levels of security. Any super-user process can raise the security level, but no process can lower it. The security levels are:
-1 Permanently insecure mode - always run the system in level 0 mode. This is the default initial value.
0 Insecure mode - immutable and append-only flags may be turned off. All devices may be read or written subject to their permissions.
1 Secure mode - the system immutable and system append-only flags may not be turned off; disks for mounted filesystems,
2 Highly secure mode - same as secure mode, plus disks may not be opened for writing (except by mount(2)) whether mounted or not. This level precludes tampering with filesystems by unmounting them, but also inhibits running newfs(8) while the system is multi-user. In addition, kernel time changes are restricted to less than or equal to one second. Attempts to change the time by more than this will log the message ``Time adjustment clamped to +1 second''.
3 Network secure mode - same as highly secure mode, plus IP packet filter rules (see ipfw(8) and ipfirewall(4)) cannot be changed and dummynet(4) configuration cannot be adjusted.
I've been running FreeBSD and OpenBSD for a couple of years now, and haven't ever installed NetBSD before.. It's true, FreeBSD does by default take a little more room than OpenBSD (not near as bad as Linux), but I think it's worth it.. FreeBSD's configuration files and everything make much more sense to me than OpenBSD's..
> I'd like to see linux circa 1998 try and power a car.
It's 2002 and they've chosen win98 for their new model.
Linux's usability in 98 doesn't matter. It's more than capable of running a car today...
The funniest part about this is that when you plan on supporting all the browsers from the start it's not that much extra work... Unless you're doing dhtml/javascript menus, but I code a long time ago that I've tested under ie, ns4, ns6, moz, and opera. Works fine with all those browsers, and I copy-and-paste it when I do ew sites that require dhtml/javascript.
Christopher Nolan is the shit.
I agree with this post . . .
yeah, I used wget and pulled his entire site in the event it's slashdotted. I really run an isp. =)
Have you no memory?
He said "iMac's killer app," not "iMac killer."
Why don't you use FreeBSD like all the other huge sites?
have you made sure to specify "tag=." for each port category?? ie: "ports-all tag=." Otherwise, it will remove all the ports, and re-download all of them.
yeah, I was totally happy with punkbuster. hlguard and csguard make servers far too unstable, and there's still cheaters.
that+looks+cool
yeah, but I think the iPaq lived longer.
Yes, but he did say "that is viable by the sheer weight of their numbers."
That doesn't mean everything.
okay, first I'll explain how ports work... then I'll tell show you that your numbers are wrong.
/usr/ports# find . -type d -maxdepth 1 -ls
/usr/ports# find . -type d -maxdepth 2 | wc -l
/usr/ports# du -h
to download new ports you use cvs. they're broken down into categories. www, ftp, sysutils, audio, etc. when you run your cvs script, it will always download files called: Makefile, distinfo, pkg-comment, pkg-descr, and pkg-plist. Occasionally it will create a "files" directory and include patches. It always downloads the patches, because they're generally small anyways.
Just to have exact figures I downloaded all of the ports while writing this (I usually don't download ports having to do with japanese, chinese, etc.)
Here's what I found:
returns 54 directories, one is "." and four don't count. (they're used by FreeBSD)
returns 7111 results. Now we need to subtract the 55 "."'s and all of those "."'s have a "." of their own.
7111 results, minus 110 = 7001 total ports.
returns 266 megs.
266 megs / 7001 ports = 0.038 megs per port.
a port is the source, with freebsd specific diffs, that gets patched and then compiled.
This is true, a friend of mine made the mistake of trying to update his warez copy of office 2000 from the officeupdate site.. What a nightmare.. He wound up having to format and re-install windows/office..
umm.. listen.. read about stuff before you make a fool of yourself. This FAQ explains everything about the copyright.
Yes, but they give you instructions for making your own iso.. I just made my 3.1 iso. Very simple.
I just checked my hotmail account, and all of my checkboxes were still un-checked.
no, you know what.. he's fucking right. if you knew anything about FreeBSD, you'd know that standard packages are installed in /usr/bin, where as non-standard packages (installed from ports) get installed in /usr/local/bin.