Forgot your password?
typodupeerror
Operating Systems Software Upgrades BSD

OpenBSD 4.1 Released 218

Posted by kdawson
from the hot-bits dept.
adstro writes to quote from the BSD mailing list: "We are pleased to announce the official release of OpenBSD 4.1. This is our 21st release on CD-ROM (and 22nd via FTP). We remain proud of OpenBSD's record of ten years with only two remote holes in the default install. As in our previous releases, 4.1 provides significant improvements, including new features, in nearly all areas of the system."
This discussion has been archived. No new comments can be posted.

OpenBSD 4.1 Released

Comments Filter:
  • Re:Downloads (Score:3, Insightful)

    by geminidomino (614729) * on Wednesday May 02, 2007 @03:02AM (#18953563) Journal
    That's the one thing that's hindered my using it, too.

    Keeping in mind who we're dealing with, though, I don't see it changing any time soon.
  • Re:Just curious... (Score:5, Insightful)

    by Yvanhoe (564877) on Wednesday May 02, 2007 @04:06AM (#18953825) Journal

    You wonder? You wonder? Of course it has security implications.
    I think you are missing this :

    We remain proud of OpenBSD's record of ten years with only two remote holes in the default install.
    and the fact that openBSD doesn't use the linux/windows "security" paradigm of "write software quickly, find security bugs, fix them ASAP". Their strategy is instead to be secure out of the box, at the price of a slower pace of development and less features.

    I am quite happy with linux right now. But I know that the day I will run a critical application/server, I will either use openBSD or maybe a stable debian but not a recent linux.
  • Re:Just curious... (Score:3, Insightful)

    by asninn (1071320) on Wednesday May 02, 2007 @04:14AM (#18953859)

    However, I'm very unlikely to upgrade to any new version; why change something that works perfectly?

    Because holes continue to be found in every version and because old versions do not receive fixes anymore. There's only been two remote holes, of course, but there's an emphasis on both "remote" *and* "holes" here - and also an emphasis on "root", which unfortunately isn't even included in the slogan.

    In other words, if you don't upgrade unless/until a new remote root exploit is found, you still have to worry about local users rooting your box (and don't forget that there typically are users like "www" etc. even when no actual person besides you has an account on the box; not a big problem for a firewall, most likely, but servers in general aren't automatically safe), and you still have to worry about remote priviledge escalation, remote denials of service and the like, too.

    That's not to say that OpenBSD is not a very secure system, but the slogan is somewhat misleading (it's marketing, after all!), and not keeping a system up to date with security patches is never a good idea.

  • Re:Downloads (Score:3, Insightful)

    by LizardKing (5245) on Wednesday May 02, 2007 @04:25AM (#18953901)

    Why don't you download the floppy boot images, do a net install and save having to waste a CDR?

    The reason official downloadable ISO images are not available is to encourage people to buy the prepackaged CDs. The revenue from these sales is a significant reason why OpenBSD continues to flourish, as people like Theo de Raadt have an income that allows them to work full time on the project. Hopefully this will prevent a monoculture of Linux on servers, which in some respects would be as bad as the monoculture of Windows on the desktop. Personally I don't need CDs, but if I was using OpenBSD (rather than a certain other BSD) then I would be doing net installs from a server on my own network, and making a donation.

  • Re:Just curious... (Score:5, Insightful)

    by udippel (562132) on Wednesday May 02, 2007 @06:40AM (#18954571)
    And in this case, I'm not using that as a sarcastic reference to a low number, there really have only been two.

    Hmm, sorry, two what ? Two remotely exploitable holes in the default install, or two users running the default install ?
    (For those not in the know: the default install has - drums rolling - ssh enabled. And SMTP on 127.0.0.1. That's it. Over. No http, no ftp, no pop, nothing else.)

    Don't get me wrong, I'm a great OpenBSD fan and run it on my 3 production machines. Still, personally I consider that statement about the two holes more embarassing than impressive.
  • Re:Downloads (Score:3, Insightful)

    by kernelpanicked (882802) on Wednesday May 02, 2007 @06:53AM (#18954651)
    Ummm no. Nobody said "targeted at Linux users." Don't know where you got that BS from. Here are a few tips though.

    1. --help? What the fuck is up with GNU and the ridiculous long options. Try reading the man pages which actually provide information on a BSD system as well as examples. By the way, every command, device, and config file has one on OpenBSD.

    2. Korn shell is nearly a drop in replacement for bash and in some ways a damn sight nicer.

    3. export PAGER=less. And you call yourself a command line user? For shame.
  • Re:No ISO policy (Score:5, Insightful)

    by LittleLebowskiUrbanA (619114) on Wednesday May 02, 2007 @07:08AM (#18954767) Homepage Journal
    Have you priced the official disks? Have you ever used OpenSSH? If so, have you ever given anything back to the creators and maintainers of OpenSSH (OpenBSD)?

        This attitude pisses me off. If you were actually using OpenBSD, you'd be willing to fork over a few buck to get the disks. But you're not using it. The amount of time spent to produce such a high quality OS is worth the money in my book.

        The other thing that pisses me off is that OpenBSD doesn't have a millionaire patron. But they do have Sun, Cisco, etc shipping their software (OpenSSH) withouth even bothering to contribute to the foundation. Kinda cheap, huh? Maybe that's why they charge for their install disks.

        You clearly know nothing about OpenBSD.

Promising costs nothing, it's the delivering that kills you.

Working...