Annotation of www/35.html, Revision 1.19
1.1 deraadt 1: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
2: <html>
3: <head>
4: <title>OpenBSD 3.5 Release</title>
5: <link rev=made href="mailto:www@openbsd.org">
6: <meta name="resource-type" content="document">
7: <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
8: <meta name="description" content="OpenBSD 3.5">
9: <meta name="keywords" content="openbsd,main">
10: <meta name="distribution" content="global">
11: <meta name="copyright" content="This document copyright 2003 by OpenBSD.">
12: </head>
13:
14: <body bgcolor="#ffffff" text="#000000" link="#24248E">
15:
16: <a href="index.html">
17: <img alt="[OpenBSD]" height="30" width="141" hspace="24" src="images/smalltitle.gif" border="0"></a>
18: <hr>
19:
20: <p>
21: <a href="images/Carp.gif">
22: <img align="left" width="255" height="343" hspace="24" vspace="30"
23: src="images/Carp.gif" alt="OpenBSD 3.5 logo"></a>
24: <h2><font color="#0000e0">The OpenBSD 3.5 Release:</font></h2>
25: <p>
26: Released May 1, 2004<br>
27: Copyright 1997-2004, Theo de Raadt.<br>
28: <font color="#e00000">ISBN 0-9731791-1-9</font>
29: <p>
30:
31: <a href="#new">What's New</a><br>
32: <a href="#install">How to install</a><br>
33: <a href="#ports">How to use the ports tree</a><br>
34: <a href="orders.html">Ordering a CD set</a><br>
35:
36: <p>
37: <h3><font color="#0000e0">
38: To get the files for this release:
39: <ul>
40: <li>Order a CDROM from our <a href="orders.html">ordering system</a>.
41: <li>See the information on <a href="ftp.html">The FTP page</a> for
42: a list of mirror machines.
43: <li>Go to the <font color="#e00000">pub/OpenBSD/3.5/</font> directory on
44: one of the mirror sites.
45: <li>Briefly read the rest of this document.
46: <li>Have a look at <a href="errata.html">The 3.5 Errata page</a> for a list
47: of bugs and workarounds.
48: <li>See a <a href="plus.html">detailed log of changes</a> between the
49: 3.4 and 3.5 releases.
50: </ul>
51: </font></h3>
52: <br clear=all>
53:
54: <strong>Note:</strong> All applicable copyrights and credits can be found
55: in the applicable file sources found in the files src.tar.gz, sys.tar.gz,
56: XF4.tar.gz, or in the files fetched via ports.tar.gz. The distribution
57: files used to build packages from the ports.tar.gz file are not included on
58: the CDROM because of lack of space.
59: <p>
60:
61: <a name="new"></a>
62: <hr>
63: <p>
64: <h3><font color="#0000e0">What's New</font></h3>
65: <p>
66: This is a partial list of new features and systems included in OpenBSD 3.5.
1.2 deraadt 67: For a comprehensive list, see the <a href="plus.html">changelog</a> leading
1.1 deraadt 68: to 3.5.
69: <p>
70:
71: <ul>
72:
1.14 deraadt 73: <li> New platforms:
74: <ul>
75: <li><a href="http://www.openbsd.org/amd64.html">OpenBSD/amd64</a>
76: <li><a href="http://www.openbsd.org/cats.html">OpenBSD/cats</a>
77: </ul>
78: <p>
79:
1.4 deraadt 80: <li>...
1.1 deraadt 81: <p>
82:
1.3 mickey 83: <li>The HPPA architecture gets support for many
84: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pci">PCI</a>
85: based machines.
86: <p>
87:
1.1 deraadt 88: <li>Replacement of GNU
1.12 otto 89: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bc">bc(1)</a>,
90: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dc">dc(1)</a>,
1.4 deraadt 91: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=nm">nm(1)</a> and
92: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=size">size(1)</a>
1.1 deraadt 93: commands with BSD licensed equivalents.
94: <p>
95:
1.5 mcbride 96: <li>A large number of bug fixes, changes, and optimizations to our packet filter
97: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pf">pf(4)</a>
98: including:
99: <ul>
1.19 ! otto 100: <li>Atomic commits of ruleset changes (reduce the chance of ending up in an
! 101: inconsistent state).
! 102: <li>A 30 percent reduction in the size of state table entries.
! 103: <li>Source-tracking (limit number of clients and states per client).
! 104: <li>Sticky-address (the flexibility of round-robin with the benefits of
! 105: source-hash).
! 106: <li>Invert the specific/general socket match order when redirecting to
1.5 mcbride 107: localhost (Prevents the potential security problem of remote connections
1.19 ! otto 108: being identified as local).
1.5 mcbride 109: <li>Significant improvements to interface handling.
110: </ul>
111: <p>
112:
113: <li>New tools for high availability and load balancing:
114: <ul>
115: <li>CARP (the Common Address Redundancy Protocol)
116: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=carp">carp(4)</a>
117: allows multiple machines to share responsibility for a given IP address or
118: addresses. If the owner of the address fails, another member of the group
119: will take over for it. A discussion of the history of CARP can be found
120: <a href="http://www.openbsd.org/lyrics.html">here</a>.
121: <li>Additions to the
122: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pfsync">pfsync(4)</a>
123: interface allow it to synchronise state table entries between two or more
124: firewalls which are operating in parallel, allowing stateful connections
125: to cross any of the firewalls regardless of where the state was initially
126: created.
127: </ul>
128: <p>
129:
1.6 todd 130: <li> XFree86 4.4 unencumbered
1.9 deraadt 131: <p>
1.6 todd 132:
133: <li> New functionality:
134: <ul>
135: <li>New ptm device (see <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pty&sektion=4">pty(4)</a>)
136: that allows non-privileged processes to allocate a properly-permissioned pty. No more setuid(root)
137: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=xterm&sektion=1">xterm(1)</a>!
1.17 otto 138: <li>The <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=closefrom&sektion=2">closefrom(2)</a>
139: system call has been added.
1.6 todd 140: <li>TCP MD5 signatures (used by <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=nc&sektion=1">nc(1)</a>
1.17 otto 141: and <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bgpd&sektion=8">bgpd(8)</a>).
142: <li>i386 and amd64 <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pxeboot&sektion=8">pxeboot(8)</a>.
1.19 ! otto 143: <li>The i386 8GB boot loader limitation has been removed.
1.6 todd 144: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=spamd&sektion=8">spamd(8)</a>
1.16 todd 145: gains <a href="http://projects.puremagic.com/greylisting/">greylisting</a> support.
1.6 todd 146: <li>Interface 'cloning,' accessed by
147: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ifconfig&sektion=8">ifconfig(8)</a>
1.19 ! otto 148: commands <em>create</em> and <em>destroy</em>. E.g. `ifconfig vlan100 create'.
1.17 otto 149: <li>The MAKEDEV(8) manual pages are now generated.
1.18 sturm 150: <li>Complete rewrite of package tools in perl.
1.6 todd 151: </ul>
152: <p>
153:
1.19 ! otto 154: <li> New Privilege Separation Functionality:
1.6 todd 155: <ul>
156: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=isakmpd&sektion=8">isakmpd(8)</a>
157: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=named&sektion=8">named(8)</a>
1.13 todd 158: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pflogd&sektion=8">pflogd(8)</a>
1.6 todd 159: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpdump&sektion=8">tcpdump(8)</a>
160: </ul>
161: <p>
162:
163: <li> New tools:
164: <ul>
165: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sensorsd&sektion=8">sensorsd(8)</a>
1.18 sturm 166: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=procmap&sektion=1">procmap(1)</a>
1.6 todd 167: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=bgpd&sektion=8">bgpd(8)</a>
1.10 deraadt 168: <li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pkill&sektion=1">pkill(1)</a> and
169: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=pgrep&sektion=1">pgrep(1)</a>
1.6 todd 170: </ul>
171: <p>
172:
1.18 sturm 173: <li> Over 2500 ports, 2300 pre-built packages.
174: <p>
175:
1.7 todd 176: <li>Many improvements for security and reliability (look for the red
177: print in the <a href="plus.html">complete changelog</a>).
178: <p>
179:
1.19 ! otto 180: <li>Many improvements in manual pages and other documentation.
! 181: <p>
! 182:
1.1 deraadt 183: <li> and much more.
184:
185: </ul>
186:
187: <a name="install"></a>
188: <hr>
189: <p>
190: <h3><font color="#0000e0">How to install</font></h3>
191: <p>
192: Following this are the instructions which you would have on a piece of
193: paper if you had purchased a CDROM set instead of doing an alternate
194: form of install. The instructions for doing an ftp (or other style
195: of) install are very similar; the CDROM instructions are left intact
196: so that you can see how much easier it would have been if you had
197: purchased a CDROM instead.
198: <p>
199:
200: <hr>
201: Please refer to the following files on the three CDROMs or ftp mirror for
202: extensive details on how to install OpenBSD 3.5 on your machine:
203: <p>
204: <ul>
205: <li>CD1:3.5/i386/INSTALL.i386
1.2 deraadt 206: <li>CD1:3.5/vax/INSTALL.vax
1.1 deraadt 207: <p>
1.2 deraadt 208: <li>CD2:3.5/amd64/INSTALL.amd64
1.1 deraadt 209: <li>CD2:3.5/macppc/INSTALL.macppc
210: <p>
211: <li>CD3:3.5/sparc/INSTALL.sparc
212: <li>CD3:3.5/sparc64/INSTALL.sparc64
213: <p>
214: <li>FTP:.../OpenBSD/3.5/alpha/INSTALL.alpha
215: <li>FTP:.../OpenBSD/3.5/hp300/INSTALL.hp300
216: <li>FTP:.../OpenBSD/3.5/hppa/INSTALL.hppa
1.2 deraadt 217: <li>FTP:.../OpenBSD/3.5/cats/INSTALL.cats
1.1 deraadt 218: <li>FTP:.../OpenBSD/3.5/mac68k/INSTALL.mac68k
219: <li>FTP:.../OpenBSD/3.5/mvme68k/INSTALL.mvme68k
1.2 deraadt 220: <li>FTP:.../OpenBSD/3.5/mvme88k/INSTALL.mvme88k
1.1 deraadt 221: </ul>
222: <hr>
223:
224: <p>
225: Quick installer information for people familiar with OpenBSD, and the
226: use of the "disklabel -E" command. If you are at all confused when
227: installing OpenBSD, read the relevant INSTALL.* file as listed above!
228: <p>
229:
230: <h3><font color="#e00000">OpenBSD/i386:</font></h3>
231: <ul>
232: Play with your BIOS options to enable booting from a CD. The OpenBSD/i386
233: release is on CD1. If your BIOS does not support booting from CD, you will need
234: to create a boot floppy to install from. To create a boot floppy write
1.2 deraadt 235: <i>CD1:3.5/i386/floppy35.fs</i> to a floppy and boot via the floppy drive.
1.1 deraadt 236:
237: <p>
1.2 deraadt 238: Use <i>CD1:3.5/i386/floppyB35.fs</i> instead for greater scsi controller
239: support, or <i>CD1:3.5/i386/floppyC35.fs</i> for better laptop support.
1.1 deraadt 240:
241: <p>
242: If you are planning on dual booting OpenBSD with another OS, you will need to
243: read the included INSTALL.i386 document.
244:
245: <p>
246: To make a boot floppy under MS-DOS, use the "rawrite" utility located
247: at <i>CD:/3.5/tools/rawrite.exe</i>. To make the boot floppy under a Unix OS,
248: use the <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=
249: dd&sektion=1">dd(1)</a> utility. The following is an example usage of
250: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=dd&sektion=1">dd(1)
251: </a>, where the device could be "floppy", "rfd0c", or
252: "rfd0a".
253:
254: <ul><pre>
255: # <strong>dd if=<file> of=/dev/<device> bs=32k</strong>
256: </pre></ul>
257:
258: <p>
259: Make sure you use properly formatted perfect floppies with NO BAD BLOCKS or
260: your install will most likely fail. For more information on creating a boot
261: floppy and installing OpenBSD/i386 please refer to
262: <a href="faq/faq4.html#MkFlop">FAQ4.1</a>.
263: </ul>
264:
265: <p>
266: <h3><font color="#e00000">OpenBSD/macppc:</font></h3>
267: <ul>
268: Put the CD2 in your CDROM drive and poweron your machine while holding down the
269: <i>C</i> key until the display turns on and shows <i>OpenBSD/macppc boot</i>.
270:
271: <p>
272: Alternatively, at the Open Firmware prompt, enter <i>boot cd:,ofwboot
273: /3.5/macppc/bsd.rd</i>
274: </ul>
275:
276: <p>
1.2 deraadt 277: <h3><font color="#e00000">OpenBSD/amd64:</font></h3>
278: <ul>
279: [write a chunk here]
280: </ul>
281:
282: <p>
1.1 deraadt 283: <h3><font color="#e00000">OpenBSD/vax:</font></h3>
284: <ul>
285: Boot over the network via mopbooting as described in INSTALL.vax.
286: </ul>
287:
288: <p>
289: <h3><font color="#e00000">OpenBSD/sparc:</font></h3>
290: <ul>
291: The 3.5 release of OpenBSD/sparc is located on CD3. To boot off of this CD you
292: can use one of the two commands listed below, depending on the version of your
293: ROM.
294:
295: <ul><pre>
296: > <strong>boot cdrom 3.5/sparc/bsd.rd</strong>
297: or
298: > <strong>boot sd(0,6,0)3.5/sparc/bsd.rd</strong>
299: </pre></ul>
300:
301: <p>
302: If your sparc does not have a CD drive, you can alternatively boot from floppy.
1.2 deraadt 303: To do so you need to write "CD3:3.5/sparc/floppy35.fs" to a floppy.
1.1 deraadt 304: For more information see <a href="faq/faq4.html#MkFlop">FAQ4.1</a>. To boot from
305: the floppy use one of the two commands listed below, depending on the version of
306: your ROM.
307:
308: <ul><pre>
309: > <strong>boot floppy</strong>
310: or
311: > <strong>boot fd()</strong>
312: </pre></ul>
313:
314: <p>
315: Make sure you use a properly formatted floppy with NO BAD BLOCKS or your install
316: will most likely fail.
317:
318: <p>
319: If your sparc doesn't have a floppy drive nor a CD drive, you can either
320: setup a bootable tape, or install via network, as told in the
321: INSTALL.sparc file.
322: </ul>
323:
324: <p>
325: <h3><font color="#e00000">OpenBSD/sparc64:</font></h3>
326: <ul>
327: Put the CD3 in your CDROM drive and type <i>boot cdrom</i>.
328:
329: <p>
330: If this doesn't work, or if you don't have a CDROM drive, you can write
1.2 deraadt 331: <i>CD3:3.5/sparc64/floppy35.fs</i> to a floppy and boot it with <i>boot
1.1 deraadt 332: floppy</i>.<br>
333: Make sure you use a properly formatted floppy with NO BAD BLOCKS or your install
334: will most likely fail.
335:
336: <p>
1.2 deraadt 337: You can also write <i>CD3:3.5/sparc64/miniroot35.fs</i> to the swap partition on
1.1 deraadt 338: the disk and boot with <i>boot disk:b</i>.
339:
340: <p>
341: If nothing works, you can boot over the network as described in INSTALL.sparc64
342: </ul>
343:
344: <p>
345: <h3><font color="#e00000">OpenBSD/alpha:</font></h3>
346: <ul>
1.2 deraadt 347: <p>Write <i>FTP:3.5/alpha/floppy35.fs</i> or
348: <i>FTP:3.5/alpha/floppyB35.fs</i> (depending on your machine) to a diskette and
1.1 deraadt 349: enter <i>boot dva0</i>. Refer to INSTALL.alpha for more details.
350:
351: <p>
352: Make sure you use a properly formatted floppy with NO BAD BLOCKS or your install
353: will most likely fail.
354:
355: </ul>
356:
357: <p>
358: <h3><font color="#e00000">OpenBSD/hp300:</font></h3>
359: <ul>
360: <p>
361: Boot over the network by following the instructions in INSTALL.hp300.
362: </ul>
363:
364: <p>
365: <h3><font color="#e00000">OpenBSD/hppa:</font></h3>
366: <ul>
367: <p>
368: Boot over the network by following the instructions in INSTALL.hppa or the
369: <a href="hppa.html#netboot">hppa platform page</a>.
370: </ul>
371:
372: <p>
373: <h3><font color="#e00000">OpenBSD/mac68k:</font></h3>
374: <ul>
375: <p>
376: Boot MacOS as normal and partition your disk with the appropriate A/UX
377: configurations. Then, extract the Macside utilities from
378: <i>FTP:3.5/mac68k/utils</i> onto your hard disk. Run Mkfs to create your
379: filesystems on the A/UX partitions you just made. Then, use the
380: "BSD/Mac68k Installer" to copy all the sets in <i>FTP:3.5/mac68k/</i> onto your
381: partitions. Finally, you will be ready to configure the "BSD/Mac68k
382: Booter" with the location of your kernel and boot the system.
383: </ul>
384:
385: <p>
386: <h3><font color="#e00000">OpenBSD/mvme68k:</font></h3>
387: <ul>
388: <p>
389: You can create a bootable installation tape or boot over the network.<br>
390: The network boot requires a MVME68K BUG version that supports the <i>NIOT</i>
391: and <i>NBO</i> debugger commands. Follow the instructions in INSTALL.mvme68k
392: for more details.
393: </ul>
394:
395: <p>
1.2 deraadt 396: <h3><font color="#e00000">OpenBSD/mvme88k:</font></h3>
397: <ul>
398: <p>
399: You can create a bootable installation tape or boot over the network.<br>
400: The network boot requires a MVME88K BUG version that supports the <i>NIOT</i>
401: and <i>NBO</i> debugger commands. Follow the instructions in INSTALL.mvme88k
402: for more details.
403: </ul>
404:
405: <p>
1.1 deraadt 406: <h3><font color="#e00000">Notes about the source code:</font></h3>
407: <ul>
408: src.tar.gz contains a source archive starting at /usr/src. This file
409: contains everything you need except for the kernel sources, which are
410: in a separate archive. To extract:
411: <p>
412: <ul><pre>
413: # <strong>mkdir -p /usr/src</strong>
414: # <strong>cd /usr/src</strong>
415: # <strong>tar xvfz /tmp/src.tar.gz</strong>
416: </pre></ul>
417: <p>
418: sys.tar.gz contains a source archive starting at /usr/src/sys.
419: This file contains all the kernel sources you need to rebuild kernels.
420: To extract:
421: <p>
422: <ul><pre>
423: # <strong>mkdir -p /usr/src/sys</strong>
424: # <strong>cd /usr/src</strong>
425: # <strong>tar xvfz /tmp/sys.tar.gz</strong>
426: </pre></ul>
427: <p>
428: Both of these trees are a regular CVS checkout. Using these trees it
429: is possible to get a head-start on using the anoncvs servers as
430: described <a href="anoncvs.html">here</a>.
431: Using these files
432: results in a much faster initial CVS update than you could expect from
433: a fresh checkout of the full OpenBSD source tree.
434: <p>
435: </ul>
436: <a name="ports"></a>
437: <hr>
438: <p>
439: <h3><font color="#0000e0">Ports Tree</font></h3>
440: <p>
441: A ports tree archive is also provided. To extract:
442: <p>
443: <ul><pre>
444: # <strong>cd /usr</strong>
445: # <strong>tar xvfz /tmp/ports.tar.gz</strong>
446: # <strong>cd ports</strong>
447: </pre></ul>
448: <p>
449: The <i>ports/</i> subdirectory is a checkout of the OpenBSD ports tree. Go
450: read the <a href="ports.html">ports</a> page
451: if you know nothing about ports
452: at this point. This text is not a manual of how to use ports.
453: Rather, it is a set of notes meant to kickstart the user on the
454: OpenBSD ports system.
455: <p>
456: The <i>ports/</i> directory represents a CVS (see the manpage for
457: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=cvs&apropos=0&sektion=1&manpath=OpenBSD+Current&arch=i386&format=html">
458: cvs(1)</a> if
459: you aren't familiar with CVS) checkout of our ports. As with our complete
460: source tree, our ports tree is available via anoncvs. So, in
461: order to keep current with it, you must make the <i>ports/</i> tree
462: available on a read-write medium and update the tree with a command
463: like:
464: <p>
465: <ul><pre>
1.2 deraadt 466: # <strong>cd [portsdir]/; cvs -d anoncvsserver.openbsd.org:/cvs update -Pd -rOPENBSD_3_5</strong>
1.1 deraadt 467: </pre></ul>
468: <p>
469: [Of course, you must replace the local directory and server name here
470: with the location of your ports collection and a nearby anoncvs
471: server.]
472: <p>
473: Note that most ports are available as packages through ftp. Updated
474: packages for the 3.5 release will be made available if problems arise.
475: <p>
476: If you're interested in seeing a port added, would like to help out, or just
477: would like to know more, the mailing list ports@openbsd.org is a good
478: place to know.
479: <p>
480:
481: <hr>
482: <a href="index.html"><img height="24" width="24" src="back.gif" border="0"
483: alt="OpenBSD"></a>
484: <a href="mailto:www@openbsd.org">www@openbsd.org</a>
485: <br><small>
1.19 ! otto 486: $OpenBSD: 35.html,v 1.18 2004/03/24 08:50:49 sturm Exp $
1.1 deraadt 487: </small>
488:
489: </body>
490: </html>