OpenBSD 3.9 Released 130
An anonymous reader writes "OpenBSD 3.9 was released this morning and is now available for download from the OpenBSD mirror sites. Among the new features is integrated framework for monitoring hardware sensors, a BSD licensed driver for nvidia nforce ethernet, and loads of new drivers and bug fixes. Of course you can still purchase the CD-ROM set which includes support for five platforms: i386, amd64, macppc, sparc, sparc64, and also includes the complete blob free source tree and prebuilt packages for many architectures. As always your contributions help to continue the devlopment of this great opeating system."
Dodos rejoice (Score:4, Interesting)
at least you'll be able to do something with your old mac when Apple is done switching and pulls the plug on ppc support for good...
Re:architectures? (Score:4, Interesting)
Joke or otherwise, Sparcs are awesome machines (for some roles), and OpenBSD is an awesome system.
Re:A new twist on the old Soviet Russia joke (Score:1, Interesting)
Theo's idolizing of Wowbagger may have held it back a bit, but you can't say the man doesn't have vision
Re:architectures? (Score:3, Interesting)
Re:Dodos rejoice (Score:1, Interesting)
Only OpenBSD supported my wireless card (Score:5, Interesting)
Installing was also easy. If you have a little patience and are not afraid of a text-only install, starting OpenBSD was very easy.
I like this operating system. The man files are comprehensive and well written, and even a person with limited technical experience (me) was able to get everything working fairly quickly.
Re:Unofficial install ISO-s (Score:1, Interesting)
I have always been totally perplexed by people who download and use OpenBSD ISO's (besides the official OpenBSD installer-only ISO's). It completely goes against what OpenBSD is about and defeats the whole reason for using OpenBSD.
You use OpenBSD because you are concerned about security and then go and run some random binary provided by some random people on the net who you know little about? People who don't have the long-term reputation which Theo and the OpenBSD team have?
I hope you really can trust md5 and you better check the sums of each of the files on those CD's. I'd rather buy an official CD as the best option or otherwise download the appropriate files from an OpenBSD ftp server, check those sums and burn your own bootable OpenBSD CD, as a WORST CASE!
Re:architectures? (Score:3, Interesting)
Unfortunately, last I heard, Sun was being their usual selves and hiding key architectural details (e.g., chipset stuff) that are holding up the porting effort.
That was about a month or so ago -- hopefully Sun have decided to open up by now
Source updates on a minimal system? (Score:5, Interesting)
I could maintain a lot of stuff in 10GB, but given the sensitive nature of most OpenBSD installations (such as firewalls, etc.), GCC is not among the things I want to have around.
According to the FAQ [openbsd.org], three file sets are required for installation:
Although that gets you a complete running system, it doesn't leave you with one that can self-host source updates. Given that I run exactly one OpenBSD machine at the office, I don't want to have a separate build server sitting around just to keep it updated. So, even though I have the hardware to support the process, and the technical skills to do so, it's still a major pain in the neck.
Oh, and to those saying I should just install snapshots, the FAQ says: [openbsd.org]
Elsewhere on the site are other discouraging words [openbsd.org]:For our major architectures, we tend to build mini releases of unknown stability and quality about every month or so. This is where we place those test releases.
Ain't no way I'm going to tell my boss that my security update process involves "mini releases of unknown stability and quality". That is why I'd like to see "baseXX-r1.tgz" at ftp.openbsd.bsd (and it's mirrors) that holds nothing but the 3 or 4 binaries I'd need to upgrade on a stock system to bring it up to date. I'm not stupid or broke - just very time-challenged. I'd be happy to pay for a subscription to such a service were one available.
Re:Rock Solid Already (Score:4, Interesting)
So to me, OpenBSD is just a Good Thing (R) from a practical point of view. I don't bother to have the latest version of everything, but I'm happy when things "just work" ;) and you can trust that they are solid and safe.
Re:Source updates on a minimal system? (Score:3, Interesting)
I'm first going on the assumption that the attacker only has regular user access. If he has root, then all is lost (well, not completely [openbsd.org], but still...). Regular users, though, might find it a bit annoying to not have any includes available when trying to compile 1337_rootkit.c. They'd have to install their own tarball, link against those headers, etc.
Would that stop a determined cracker? No! But it's an extra layer of hassle that you're making them jump through, and if it takes them an extra five minutes to figure out, then maybe that's enough. Again, it's not a solution, but a layer. It's like filtering MAC addresses: you don't use that as your sole line of defense, but it's a nice idea in addition to your other methods.
And philosophically, an ideal system is one that does not one whit more than it was designed to do. You could install X and ircd on a firewall, too, but if those don't help it fulfill its deployment goals then why do it?