OpenBSD Archive

OpenBSD on the Microsoft Surface Go

Thom Holwerda 2018-08-31 OpenBSD 10 Comments

For some reason I like small laptops and the constraints they place on me (as long as they're still usable). I used a Dell Mini 9 for a long time back in the netbook days and was recently using an 11" MacBook Air as my primary development machine for many years. Recently Microsoft announced a smaller, cheaper version of its Surface tablets called Surface Go which piqued my interest.

Quite a few things don't yet work on OpenBSD, but these first few people who try things like OpenBSD on new Surface devices pave the way for support to improve.

Towards secure system graphics: Arcan and OpenBSD

Thom Holwerda 2018-04-25 OpenBSD 1 Comment

Let me preface this by saying that this is a (very) long and medium-rare technical article about the security considerations and minutiae of porting (most of) the Arcan ecosystem to work under OpenBSD. The main point of this article is not so much flirting with the OpenBSD crowd or adding further noise to software engineering topics, but to go through the special considerations that had to be taken, as notes to anyone else that decides to go down this overgrown and lonesome trail, or are curious about some less than obvious differences between how these things "work" on Linux vs. other parts of the world.

You know you're getting something good with a preface like this.

OpenBSD 6.3 released

Thom Holwerda 2018-04-02 OpenBSD 7 Comments

We are pleased to announce the official release of OpenBSD 6.3. This is our 44th release. We remain proud of OpenBSD's record of more than twenty years with only two remote holes in the default install.

As in our previous releases, 6.3 provides significant improvements, including new features, in nearly all areas of the system.

CDE on OpenBSD 6.2

Submitted by Henrik Hellerstedt 2017-12-20 OpenBSD 23 Comments

If you've noticed a disruption in the time-space continuum recently, it is likely because I have finally been able to compile and install the Common Desktop Environment (CDE) in a current and actively-developed operating system (OpenBSD 6.2 in this case).

Since it's been a while - I love CDE.

New OpenBSD kernel security feature

Submitted by Ryan Freeman 2017-06-14 OpenBSD 38 Comments

Theo de Raadt unveiled and described an interesting new kernel security feature: Kernel Address Randomized Link.

Over the last three weeks I've been working on a new randomization feature which will protect the kernel.

The situation today is that many people install a kernel binary from OpenBSD, and then run that same kernel binary for 6 months or more. We have substantial randomization for the memory allocations made by the kernel, and for userland also of course.

However that kernel is always in the same physical memory, at the same virtual address space (we call it KVA).

Improving this situation takes a few steps.

OpenBSD 6.1 released

Thom Holwerda 2017-04-11 OpenBSD 11 Comments

We are pleased to announce the official release of OpenBSD 6.1. This is our 42nd release. We remain proud of OpenBSD's record of more than twenty years with only two remote holes in the default install.

As in our previous releases, 6.1 provides significant improvements, including new features, in nearly all areas of the system.

OpenBSD on the HP Stream 7

Thom Holwerda 2016-09-12 OpenBSD 14 Comments

Recent events have rocked the mobile computing world to its core. OpenBSD retired the zaurus port, leaving users in desperate need of a new device. And not long before that, Microsoft released the Anniversary Update to Windows 10, but increased the free space requirement needed to install the update to exceed what's possible on devices with only 32GB, leaving users with cheap 32GB eMMC equipped devices such as the HP Stream series searching for a new operating system. With necessity as both mother and father, the scene is set for a truly epic pairing. OpenBSD on the HP Stream 7.

The HP Stream line is a series of budget computers in a couple form factors. The Stream 11 is a fairly typical netbook. However, the Stream 7 and 8 are tablets. They look like cheap Android devices, but inside the case, they’re real boys, er PCs, with Intel Atom CPUs.

To install OpenBSD on such a device, we need a few parts.

OpenBSD 6.0 released

Submitted by lucas_maximus 2016-09-04 OpenBSD 13 Comments

OpenBSD 6.0 has been released, with tones of improvements. They're listing this one as one of the biggest changes:

In their latest attempt to push better security practices to the software ecosystem, OpenBSD has turned W^X on by default for the base system. Binaries can only violate W^X if they're marked with PT_OPENBSD_WXNEEDED and their filesystem is mounted with the new wxallowed option. The installer will set this flag on the /usr/local partition (where third party packages go) by default now, but users may need to manually add it if you're upgrading. More details can be found in this email. If you don't use any W^X-violating applications, you don't need the flag at all.

Why OpenBSD is important to me

Thom Holwerda 2016-05-09 OpenBSD 12 Comments

OpenBSD is an operating system that prioritizes security, encryption, and free (as in free and open) software. It's built in the open - anyone can see the code and discussions around it. That's no accident - the earliest contributors recognized that transparency and public discussion are essential to effective security. If you follow the project and the email lists for any length of time, it becomes clear that the core contributors are passionate about security and quality. These are volunteers that spend their limited, precious spare time on building a great operating system that they give away for free because they want to see secure, high quality software thrive in the world. They've been doing it for 20 years.

What they've made works really well. While it's not as easy for a consumer to use as Windows or OS X, to someone more technically inclined, it's straightforward to use as a server or as a desktop for many use cases. And the big feature: it starts our very secure and if you're careful you can keep it that way as you customize it to suit your purpose.

A heartfelt case for OpenBSD.

OpenBSD 5.9 released

Thom Holwerda 2016-03-29 OpenBSD 10 Comments

OpenBSD 5.9 has been released a few days early! As always, OpenBSD doesn't do a very good job of summarising the most important changes in this new release, but that's okay - OpenBSD isn't targeted at people like me who know very little about the BSDs. It doesn't really matter - those of you using OpenBSD were probably already aware of what was coming anyway, and if not, the release notes will still make complete sense to you.

OpenBSD 5.8 released

Thom Holwerda 2015-10-20 OpenBSD 16 Comments

OpenBSD 5.8 has been released. As usual, the list of changes goes way beyond my comfort zone - I'm not exactly into the world of BSD - but I'm pretty sure that those that use OpenBSD aren't interested in oversimplified nonsense from people like me anyway.

Microsoft Funds OpenBSD

Submitted by matthekc 2015-07-09 OpenBSD 32 Comments

The Microsoft corporation has become OpenBSD's first "Gold Level" sponsor after a large donation. (Facebook and Google are both silver contributors). The move is likely related to Microsoft's use of OpenSSH in future versions of Powershell. Meanwhile at the FreeBSD site companies LineRate, NetApp, Google, Hudson River Trading, and Netflix dominate the top sponsors. Noticeably absent was the Apple Computer Corporation who base their OSX and IOS systems off of the free software BSD systems. More info about OpenBSD's 2015 fundraising campaign here.

Bitrig 1.0 released

Thom Holwerda 2014-12-04 OpenBSD 21 Comments

Bitrig 1.0 - an OpenBSD fork - has been released. Why, exactly, did Bitrig fork OpenBSD?

OpenBSD is an amazing project and has some of the best code around but some of us are of the opinion that it could use a bit of modernization. OpenBSD is a very security conscious project and, correspondingly, has to be more conservative with features. We want to be less restrictive with the codebase when it comes to experimenting with features.

OpenBSD gets USB 3.0 support

Guest post by jessesmith 2014-11-12 OpenBSD 3 Comments

The OpenBSD operating system, famous for its proactive approach to security, has gained support for USB 3.0 devices. A brief announcement was made on November 10th, letting OpenBSD users know USB 3.0 support had arrived.

The post said legacy USB 1.x devices would continue to work on USB 3.0 ports.

For those of you who'd been looking forward to using those blue USB ports of yours, now's the time to plug in as many 3.0 devices as you can find! Of course, just about the time we publish this story, USB1.x devices are now supported on a USB 3.x controller.

OpenBSD 5.5 released

Thom Holwerda 2014-05-01 OpenBSD 27 Comments

OpenBSD 5.5 has been released. As usual, the list of changes goes way beyond my comfort zone - I'm not exactly into the world of BSD - but I'm pretty sure that those that use OpenBSD aren't interested in oversimplified nonsense from people like me anyway.

As always, get it on CD-ROM (I love typing that in this day and age), or straight from a mirror.

“OpenBSD will shut down if we do not have the funding”

Submitted by jz 2014-01-16 OpenBSD 58 Comments

See the email thread on the misc list for more details.

In light of shrinking funding, we do need to look for a source to cover project expenses. If need be the OpenBSD Foundation can be involved in receiving donations to cover project electrical costs.

But the fact is right now, OpenBSD will shut down if we do not have the funding to keep the lights on.

If you or a company you know are able to assist us, it would be greatly appreciated, but right now we are looking at a significant funding shortfall for the upcoming year - Meaning the project won't be able to cover 20 thousand dollars in electrical expenses before being able to use money for other things. That sort of situation is not sustainable.

The OpenBSD project is the incubator for a number of other projects including OpenSSH and OpenSMTPD. If you use these or just want the project to survive, consider making a donation.

OpenBSD 5.4 released

Thom Holwerda 2013-11-04 OpenBSD 29 Comments

We are pleased to announce the official release of OpenBSD 5.4. This is our 34th release on CD-ROM (and 35th via FTP). We remain proud of OpenBSD's record of more than ten years with only two remote holes in the default install.

That track record remains impressive - no matter how often I see it.

OpenBSD 5.3 released

Thom Holwerda 2013-05-01 OpenBSD 7 Comments

OpenBSD 5.3 has been released. It's got improvements all over the place, and includes OpenSMTPD 53, the first version considered stable enough for production use. Y'all know where the downloads are.

OpenBSD 5.2 released

Thom Holwerda 2012-11-03 OpenBSD 33 Comments

Theo de Raadt has announced the release of OpenBSD 5.2. The OpenBSD 5.2 release page has a detailed list of all changes and improvements. As always, I would love for someone to write proper items about OpenBSD releases - it's outside my interests and cursory glances don't do it justice.

Bitrig, a fork of OpenBSD, sets up shop

Guest post by Bob Sacamano 2012-06-12 OpenBSD 14 Comments

Bitrig, a fork of OpenBSD, has surfaced. It aims to be less conservative than OpenBSD by being less loose with new features and only supporting modern architectures. Bitrig has also converted over to using LLVM's clang rather than GNU gcc for it's toolchain/compiler. A roadmap for Bitrig is also available.