version 1.55, 2000/10/03 23:22:30 |
version 1.56, 2000/11/13 00:47:53 |
|
|
<a href="groups.html">User Groups worldwide</a>. |
<a href="groups.html">User Groups worldwide</a>. |
<p> |
<p> |
Another connotation of the term is "who is using the system, and for what?", |
Another connotation of the term is "who is using the system, and for what?", |
and that is the subject of the rest of this page. |
and that is the subject of the rest of this page. These <a |
These companies and organisations trust OpenBSD's rigorous code audit |
href="#com">companies</a> and organisations trust OpenBSD's rigorous code audit |
and security-first development model. They use the system to build firewalls, |
and security-first development model. They use the system to build firewalls, |
intrusion detection systems, or general purpose servers. University |
intrusion detection systems, or general purpose servers. |
researchers and IT department developers often have similar |
<a href="#edu">University researchers</a> and IT department developers often |
security and stability requirements and choose OpenBSD.<p> |
have similar security and stability requirements and choose OpenBSD. |
|
Many <a href="#isp">Internet Service Providers</a> find OpenBSD's |
|
security features hard to resist. |
|
<p> |
|
|
If you would like to be listed on this page, send the information to |
If you would like to be listed on this page, send the information to |
<a href="mailto:press@openbsd.org">press@openbsd.org</a> . |
<a href="mailto:press@openbsd.org">press@openbsd.org</a> . |
|
|
"Undisclosed Company".</i><br><br> |
"Undisclosed Company".</i><br><br> |
<hr> |
<hr> |
|
|
|
<h2><font color=#e00000><a name="edu">Research and other Non-Commercial Users</a></font></h2> |
<dl> |
<dl> |
|
|
<li><a href="http://www.amnesty.org/">Amnesty International</a><br> |
<li><a href="http://www.amnesty.org/">Amnesty International</a><br> |
|
|
Amnesty International is using OpenBSD for network firewalls and for |
Amnesty International is using OpenBSD for network firewalls and for |
Virtual Private Networks (IPSec) between its sections around the world.<p> |
Virtual Private Networks (IPSec) between its sections around the world.<p> |
|
|
<li><a href="http://www.netsec.net/">Network Security Technologies, Inc.</a><br> |
<li><u>Prague Institute of Chemical Technology, Czech Republic</u><br> |
This network and computer security firm uses OpenBSD for high speed |
The university uses OpenBSD on PCs to provide WWW, mail and shell access to |
intrusion detection, virtual private networking, and data warehousing |
staff and students, and on a SPARC IPX for a time server and secondary DNS. |
applications. Network Security Technologies, Inc is located in the |
The admin stations also run PCs with OpenBSD. |
Washington DC metro area, and uses OpenBSD at several undisclosed |
<p> |
military and government agency locations.<p> |
|
|
|
<li><a href="http://www.adobe.com/">Adobe Systems</a><br> |
|
This software giant uses OpenBSD on a number of their network firewalls |
|
and network testing systems.<p> |
|
|
|
<li><a href="http://www.ceesonora.org.mx">Sonora State Electoral Council, |
<li><a href="http://www.ceesonora.org.mx">Sonora State Electoral Council, |
México</a><br> |
México</a><br> |
El Consejo Estatal Electoral del Estado de Sonora usa OpenBSD para proteger |
El Consejo Estatal Electoral del Estado de Sonora usa OpenBSD para proteger |
sus sistemas, estas aplicaciones estan en linea a traves de Internet,dando |
sus sistemas, estas aplicaciones estan en linea a traves de Internet, dando |
resultados electorales al usuario, su red privada esta protegida por |
resultados electorales al usuario, su red privada esta protegida por |
usuarios internos y externos.<br> |
usuarios internos y externos.<br> |
<i>This government agency uses OpenBSD as a means to protect its |
<i>This government agency uses OpenBSD as a means to protect its |
|
|
provides online electoral results to both internal and external users.</i> |
provides online electoral results to both internal and external users.</i> |
<p> |
<p> |
|
|
<li><a href="http://www.wythenet.com">WytheNet, Inc.</a><br> |
<li><a href="http://www.ualberta.ca/">The University of Alberta</a><br> |
|
uses OpenBSD on SPARC and Intel hardware for proxy servers, Kerberos |
|
servers, print servers, service monitoring, pre-emptive security |
|
scanning, and incident response. OpenBSD on Intel Hardware is used |
|
for Firewalls and Lan-to-Lan VPN for the university's secured subnets |
|
behind which all the University's new administrative systems |
|
reside. OpenBSD is used for <A |
|
HREF="http://www.ualberta.ca/~beck/authgw.html">authenticating |
|
gateways</A> in front of public labs and public ethernet jacks in |
|
approximately 40 locations across campus (about 1500 seats) to help |
|
secure public internet access. The Department of Computing Science is using two |
|
20 seat OpenBSD labs for undergraduate instruction.<p> |
|
|
This Virginia ISP uses OpenBSD on all of its servers, including primary and |
<li>The University of Michigan's <a href="http://www.citi.umich.edu/"> |
secondary radius, primary and secondary DNS, mail, network monitoring, and |
Center for Information Technology Integration (CITI)</a><br> |
several firewalls. They also sell OpenBSD based routers and firewalls to |
The CITI laboratory uses OpenBSD as the basis |
their business DSL customers. |
for many intensive research projects. |
|
OpenBSD is used for developing and analyzing |
|
<a href= "http://www.citi.umich.edu/projects/sinciti/smartcard/">smart card</a> |
|
contents and protocols, both in isolation and in real |
|
applications. Plans are underway to issue cards |
|
containing secure tokens for user logins and kerberos ticket acquisition. |
|
OpenBSD is also used as a test platform for the |
|
<a href= "http://www.citi.umich.edu/projects/mobile.html">mobile computing</a> |
|
program at CITI. Internally "The Packet Vault" is an |
|
OpenBSD machine that captures and records on cd-rom every packet on the |
|
local 10 Mbps ethernet. Packet contents are encrypted to comply with |
|
privacy requirements. This practice is used for intrusion detection. In |
|
addition, a number of people within the department are using OpenBSD as |
|
their primary operating system. <p> |
|
|
|
<li><a href="http://www.umn.edu/">The University of Minnesota</a><br> |
|
This university uses OpenBSD on Sun Sparc workstations for network monitoring |
|
and capacity planning. They query 53,000 (as of May 1999) different interfaces |
|
via SNMP, logging more than 250MB of SNMP data to concatenated disk for |
|
processing each month.<p> |
|
|
|
<li><u>Uppsala University Hospital, Department of Infectious Diseases</u><br> |
|
The department uses OpenBSD for intranet servers, as well as for firewalls and |
|
gateways to the Internet. |
<p> |
<p> |
|
|
<li><a href="http://www.calyx.net">Calyx Internet Access Corp.</a><br> |
</dl> |
|
|
This company uses OpenBSD for running all mission-critical services |
<h2><font color=#e00000><a name="com">Commercial Users</a></font></h2> |
including WWW, FTP, email, VPN traffic, and network monitoring at its |
|
data centers in New York, Los Angeles, and Amsterdam. Even larger web |
|
sites such as <a href="http://www.mitsubishicars.com">mitsubishicars.com</a>, |
|
<a href="http://www.snapple.com">snapple.com</a>, |
|
<a href="http://www.tanqueray.com">tanqueray.com</a> and others are no |
|
challenge for OpenBSD.<p> |
|
|
|
|
<dl> |
|
<li><a href="http://www.adobe.com/">Adobe Systems</a><br> |
|
This software giant uses OpenBSD on a number of their network firewalls |
|
and network testing systems.<p> |
|
|
<li><a href="http://www.alteon.com">Alteon Networks</a><br> |
<li><a href="http://www.alteon.com">Alteon Networks</a><br> |
The gigabit ethernet |
The gigabit ethernet |
hardware manufacturer, uses OpenBSD machines in varying capacities ranging |
hardware manufacturer, uses OpenBSD machines in varying capacities ranging |
|
|
products. "The robustness, portability and commitment to security |
products. "The robustness, portability and commitment to security |
of OpenBSD, as well as the ability to run on different hardware platforms, |
of OpenBSD, as well as the ability to run on different hardware platforms, |
provides an ideal operating system for environments where security and high |
provides an ideal operating system for environments where security and high |
availability are major concerns" , says Ivan Arce, CORE SDI's CEO.<p> |
availability are major concerns", says Ivan Arce, CORE SDI's CEO.<p> |
|
|
<li><a href="http://www.qpalzm.com">qpalzm.com services</a><br> |
<li><a href="http://www.fscinternet.com">FSC Internet Corp.</a><br> |
qpalzm services runs OpenBSD to offer web hosting and shell accounts. The |
A large Information Security and Internet development firm located in |
website offers daily updates on programming, gaming, irc, and other |
Toronto, has used OpenBSD and its IPsec support to construct |
technobabble. An online MUD is also available. There is also a |
a secure and flexible VPN for a multi-billion dollar client. "We are |
<a href="http://www.jscript.org">JavaScript Mailing List</a> |
delighted with OpenBSD's performance, reliability, and pro-active |
using OpenBSD for the benefit of those interested in JavaScript |
attitude towards security," says a company spokesperson. "We intend |
and DHTML. Incidently, qpalzm.com's busy WWW, FTP and mail server runs |
to use OpenBSD in many future projects. We believe strongly that |
just fine with OpenBSD on a 200MHz Pentium Pro.<p> |
open-source solutions like OpenBSD are best able to provide the high |
|
levels of security our clients require -- closed-source software |
|
almost never receives the level of code review that OpenBSD is |
|
committed to."<p> |
|
|
<li><a href="http://www.ioactive.com/">IOActive</a><br> |
<li><a href="http://www.netsec.net/">Network Security Technologies, Inc.</a><br> |
IOActive provides WWW developers and hackers with a place to tinker on test |
This network and computer security firm uses OpenBSD for high speed |
servers. The Seattle, WA, service provider also installs OpenBSD firewall, |
intrusion detection, virtual private networking, and data warehousing |
VPN and IDS systems for regional businesses. "OpenBSD is fast, reliable, and I |
applications. Network Security Technologies, Inc is located in the |
sleep a little better at night knowing I'm using it," says owner Josh Pennell. |
Washington DC metro area, and uses OpenBSD at several undisclosed |
"The other thing I love about it is over half of the work is done to secure |
military and government agency locations.<p> |
the box right after installation, saving my company copious amounts of time. |
|
OpenBSD in my mind is the defacto standard for open source secure operating |
|
systems. Everyone else is just trying to catch up".<p> |
|
|
|
<li><a href="http://www.umn.edu/">The University of Minnesota</a><br> |
|
This university uses OpenBSD on Sun Sparc workstations for network monitoring |
|
and capacity planning. They query 53,000 (as of May 1999) different interfaces |
|
via SNMP, logging more than 250MB of SNMP data to concatenated disk for |
|
processing each month.<p> |
|
|
|
<li><a href="http://www.empirenet.net/">Empire Net</a><br> An ISP in Bend, |
|
Oregon, uses OpenBSD on AMD, Intel, and Sun based hardware, for routing, |
|
firewalling, IPSec/VPN, <A |
|
HREF="http://www.csl.sony.co.jp/person/kjc/software.html#ALTQ">bandwidth |
|
limiting</a>, web hosting, database servers, network monitoring, intrusion |
|
detection, mail servers, backup servers, cache servers, and workstations. |
|
One of their OpenBSD routers handles traffic on between a T3 and eight fast |
|
ethernet ports, also with several 802.1Q VLANs to separate networks for |
|
co-location customers and business park tenants.<P> |
|
|
|
<li><a href="http://www.rtmx.com">RTMX Incorporated</a><br> |
<li><a href="http://www.rtmx.com">RTMX Incorporated</a><br> |
This vendor produces an OpenBSD derived, IEEE POSIX real time extended |
This vendor produces an OpenBSD derived, IEEE POSIX real time extended |
system solution. RTMX fully re-implemented previously developed |
system solution. RTMX fully re-implemented previously developed |
|
|
to be released soon. RTMX Inc. is also a licensed OSF Motif house, and |
to be released soon. RTMX Inc. is also a licensed OSF Motif house, and |
has ported Motif 1.2.3 to most of the supported platforms.<p> |
has ported Motif 1.2.3 to most of the supported platforms.<p> |
|
|
<li><a href="http://www.rtmx.net">RTMX Networking Services</a><br> |
<li><a href="http://www.softquad.com/">SoftQuad Software Inc.</a><br> |
This North Carolina ISP is using OpenBSD on multiple servers for Web, |
This maker of HTML and XML editing software uses OpenBSD for their |
DNS and over 1000 e-mail users in their community just West of |
gateway/firewall and FTP services.<p> |
Research Triangle. There is a mix of AMD K-6, MicroSPARC-II and |
|
PowerPC systems in use, with more customer sub-net servers coming |
|
on-line. RTMX.NET mirrors the OpenBSD |
|
<a href="http://openbsd.groupbsd.org">WWW</a> |
|
and <a href="ftp://openbsd.groupbsd.org/pub/OpenBSD/">ftp</a> sites, |
|
and also provides an anonymous CVS repository |
|
(CVSROOT=anoncvs@openbsd.groupbsd.org:/cvs), all thanks to 47GB of |
|
disk space and a dedicated T1 connection.<p> |
|
|
|
<li><a href=http://www.poppe.com>Poppe Tyson Europe</a> |
<li><a href="http://www.xtime.com/">Xtime</a><br> |
|
Xtime's core technology is the Time Inventory Management Engine, or |
|
TIMEngine ™. This technology brings the benefits of e-commerce to |
|
service merchants everywhere, making their time-based inventory available |
|
via the web or phone, and delivering powerful new customer relationship |
|
management capabilities. Xtime leverages the power of OpenBSD for 75% |
|
of their mission-critical network infrastructure, which includes Mail |
|
servers, DNS servers, several VPN/Firewalls, secure logging hosts, |
|
monitoring/IDS and production web servers. OpenBSD is the de-facto OS |
|
used by the Xtime network operations department, boasting a 100% usage |
|
rate amongst the department for desktop workstations. |
|
<p> |
|
|
is using OpenBSD as a primary DNS, mailserver for |
</dl> |
100+ mailboxes, and as their Website Development server for over 50 |
|
sites.<p> |
|
|
|
<li><a href="http://www.citi.umich.edu/">The Center for Information Technology Integration (CITI)</a><br> |
<h2><font color=#e00000><a name="isp">Internet Service Providers</a></font></h2> |
This laboratory at the University of Michigan uses OpenBSD as the basis |
<p> |
for many intensive research projects. |
One goal of any ISP is to keep their customers' sites and accounts safe |
OpenBSD is used for developing and analyzing |
from intrusion. OpenBSD's security record speaks for itself, so many |
<a href= "http://www.citi.umich.edu/projects/sinciti/smartcard/">smart card</a> |
ISPs use OpenBSD for this reason alone. However, others use OpenBSD for |
contents and protocols, both in isolation and in real |
many, if not most, of their services. |
applications. Plans are underway to issue cards |
<dl> |
containing secure tokens for user logins and kerberos ticket acquisition. |
|
OpenBSD is also used as a test platform for the |
|
<a href= "http://www.citi.umich.edu/projects/mobile.html">mobile computing</a> |
|
program at CITI. Internally "The Packet Vault" is an |
|
OpenBSD machine that captures and records on cd-rom every packet on the |
|
local 10 Mbps ethernet. Packet contents are encrypted to comply with |
|
privacy requirements. This practice is used for intrusion detection. In |
|
addition, a number of people within the department are using OpenBSD as |
|
their primary operating system. <p> |
|
|
|
<li><a href="http://www.ualberta.ca/">The University of Alberta</a><br> |
<li><a href="http://www.bsws.de/">BS Web Services</a><br> |
uses OpenBSD on SPARC and Intel hardware for proxy servers, Kerberos |
BS Web Services, a german ISP, is using OpenBSD servers for primary and |
servers, print servers, service monitoring, pre-emptive security |
secondary DNS (djbdns), primary Web hosting (Apache) and |
scanning, and incident response. OpenBSD on Intel Hardware is used |
primary mail services (qmail-ldap). They also run mission critical |
for Firewalls and Lan-to-Lan VPN for the university's secured subnets |
LDAP Authentification Backend on OpenBSD (OpenLDAP), as well as MySQL databases. |
behind which all the University's new administrative systems |
Hostmaster Henning Brauer writes:<br> |
reside. OpenBSD is used for <A |
<i>"OpenBSD needed some tuning on these machines, especially bigger maxprocs |
HREF="http://www.ualberta.ca/~beck/authgw.html">authenticating |
and maxfiles, but it runs great on hardware that's not so speedy. We are using |
gateways</A> in front of public labs and public ethernet jacks in |
AMD Athlons (mostly the new Thunderbirds) and AMD K6-III's. We also have some |
approximately 40 locations across campus (about 1500 seats) to help |
internal machines running OpenBSD as testbeds and printservers and all sorts of |
secure public internet access. The Department of Computing Science is using two |
other purposes. We plan to move some more machines to OpenBSD, especially our |
20 seat OpenBSD labs for undergraduate instruction.<p> |
firewalls. Unfortunately we are still running some closed source software, but |
|
we'd like to try the Linux emulation. OpenBSD's behaviour under high load, |
|
especially under DoS attacks, just doesn't compare to the Linux we used before |
|
- Linux went extremely slow, while OpenBSD doesn't even care (same |
|
hardware!)"</i>. |
|
<p> |
|
|
|
<li><a href="http://www.calyx.net">Calyx Internet Access Corp.</a><br> |
|
This company uses OpenBSD for running all mission-critical services |
|
including WWW, FTP, email, VPN traffic, and network monitoring at its |
|
data centers in New York, Los Angeles, and Amsterdam. Even larger web |
|
sites such as |
|
<a href="http://www.snapple.com">snapple.com</a>, |
|
<a href="http://www.tanqueray.com">tanqueray.com</a> and others are no |
|
challenge for OpenBSD.<p> |
|
|
<li><a href=http://www.crown.net>Crown.Net</a><br> |
<li><a href=http://www.crown.net>Crown.Net</a><br> |
This internet service provider is running almost completely on |
This internet service provider is running almost completely on |
|
|
OpenBSD/sparc and our shell server and several co-located servers are |
OpenBSD/sparc and our shell server and several co-located servers are |
running OpenBSD/i386.<p> |
running OpenBSD/i386.<p> |
|
|
<li><a href="http://www.fscinternet.com">FSC Internet Corp.</a><br> |
<li><a href="http://www.elixor.net/">Elixor Networks Inc.</a><br> |
A large Information Security and Internet development firm located in |
Elixor Networks uses OpenBSD on AMD hardware to provide shell accounts, |
Toronto, has used OpenBSD and its IPsec support to construct |
website hosting, and domain name hosting. |
a secure and flexible VPN for a multi-billion dollar client. "We are |
<p> |
delighted with OpenBSD's performance, reliability, and pro-active |
|
attitude towards security," says a company spokesperson. "We intend |
|
to use OpenBSD in many future projects. We believe strongly that |
|
open-source solutions like OpenBSD are best able to provide the high |
|
levels of security our clients require -- closed-source software |
|
almost never receives the level of code review that OpenBSD is |
|
committed to."<p> |
|
|
|
<li><a href="http://www.softquad.com/">SoftQuad Software Inc.</a><br> |
<li><a href="http://www.empirenet.net/">Empire Net</a><br> |
This maker of HTML and XML editing software, uses OpenBSD for their |
An ISP in Bend, Oregon, uses OpenBSD on AMD, Intel, and Sun based hardware, |
gateway, FTP, and web services.<p> |
for routing, firewalling, IPSec/VPN, <A |
|
HREF="http://www.csl.sony.co.jp/person/kjc/software.html#ALTQ">bandwidth |
|
limiting</a>, web hosting, database servers, network monitoring, intrusion |
|
detection, mail servers, backup servers, cache servers, and workstations. |
|
One of their OpenBSD routers handles traffic on between a T3 and eight fast |
|
ethernet ports, also with several 802.1Q VLANs to separate networks for |
|
co-location customers and business park tenants.<P> |
|
|
<li><a href="http://www.hobbiton.org/">Hobbiton.org</a><br> |
<li><a href="http://www.hobbiton.org/">Hobbiton.org</a><br> |
This ISP uses OpenBSD to run their free shell server, as well as other |
This ISP uses OpenBSD to run their free shell server, as well as other |
|
|
problem and, as an added bonus, the systems have been more stable." |
problem and, as an added bonus, the systems have been more stable." |
<p> |
<p> |
|
|
<li>Prague Institute of Chemical Technology, Czech Republic<br> |
<li><a href="http://www.hurontario.net">Hurontario.net</a><br> |
The university uses OpenBSD on PCs to provide WWW, mail and shell access to |
In the Headwaters region of Ontario, Canada, Hurontario.net uses OpenBSD |
staff and students, and on a SPARC IPX for a time server and secondary DNS. |
on several of their own and their customers' machines. |
The admin stations also run PCs with OpenBSD. |
<p> |
|
|
|
<li><a href="http://www.ioactive.com/">IOActive</a><br> |
|
IOActive provides WWW developers and hackers with a place to tinker on test |
|
servers. The Seattle, WA, service provider also installs OpenBSD firewall, |
|
VPN and IDS systems for regional businesses. "OpenBSD is fast, reliable, and I |
|
sleep a little better at night knowing I'm using it," says owner Josh Pennell. |
|
"The other thing I love about it is over half of the work is done to secure |
|
the box right after installation, saving my company copious amounts of time. |
|
OpenBSD in my mind is the defacto standard for open source secure operating |
|
systems. Everyone else is just trying to catch up".<p> |
|
|
|
<li><a href=http://www.poppe.com>Poppe Tyson Europe</a> |
|
is using OpenBSD as a primary DNS, mailserver for |
|
100+ mailboxes, and as their Website Development server for over 50 |
|
sites.<p> |
|
|
|
<li><a href="http://www.qpalzm.com">qpalzm.com services</a><br> |
|
qpalzm services runs OpenBSD to offer web hosting and shell accounts. The |
|
website offers daily updates on programming, gaming, irc, and other |
|
technobabble. An online MUD is also available. There is also a |
|
<a href="http://www.jscript.org">JavaScript Mailing List</a> |
|
using OpenBSD for the benefit of those interested in JavaScript |
|
and DHTML. Incidently, qpalzm.com's busy WWW, FTP and mail server runs |
|
just fine with OpenBSD on a 200MHz Pentium Pro.<p> |
|
|
|
<li><a href="http://www.rtmx.net">RTMX Networking Services</a><br> |
|
This North Carolina ISP is using OpenBSD on multiple servers for Web, |
|
DNS and over 1000 e-mail users in their community just West of |
|
Research Triangle. There is a mix of AMD K-6, MicroSPARC-II and |
|
PowerPC systems in use, with more customer sub-net servers coming |
|
on-line. RTMX.NET mirrors the OpenBSD |
|
<a href="http://openbsd.groupbsd.org">WWW</a> |
|
and <a href="ftp://openbsd.groupbsd.org/pub/OpenBSD/">ftp</a> sites, |
|
and also provides an anonymous CVS repository |
|
(CVSROOT=anoncvs@openbsd.groupbsd.org:/cvs), all thanks to 47GB of |
|
disk space and a dedicated T1 connection.<p> |
|
|
|
<li><a href="http://www.wythenet.com">WytheNet, Inc.</a><br> |
|
This Virginia ISP uses OpenBSD on all of its servers, including primary and |
|
secondary radius, primary and secondary DNS, mail, network monitoring, and |
|
several firewalls. They also sell OpenBSD based routers and firewalls to |
|
their business DSL customers. |
<p> |
<p> |
|
|
</dl> |
</dl> |