| version 1.55, 2000/10/03 23:22:30 |
version 1.56, 2000/11/13 00:47:53 |
|
|
| <a href="groups.html">User Groups worldwide</a>. |
<a href="groups.html">User Groups worldwide</a>. |
| <p> |
<p> |
| Another connotation of the term is "who is using the system, and for what?", |
Another connotation of the term is "who is using the system, and for what?", |
| and that is the subject of the rest of this page. |
and that is the subject of the rest of this page. These <a |
| These companies and organisations trust OpenBSD's rigorous code audit |
href="#com">companies</a> and organisations trust OpenBSD's rigorous code audit |
| and security-first development model. They use the system to build firewalls, |
and security-first development model. They use the system to build firewalls, |
| intrusion detection systems, or general purpose servers. University |
intrusion detection systems, or general purpose servers. |
| researchers and IT department developers often have similar |
<a href="#edu">University researchers</a> and IT department developers often |
| security and stability requirements and choose OpenBSD.<p> |
have similar security and stability requirements and choose OpenBSD. |
| |
Many <a href="#isp">Internet Service Providers</a> find OpenBSD's |
| |
security features hard to resist. |
| |
<p> |
| |
|
| If you would like to be listed on this page, send the information to |
If you would like to be listed on this page, send the information to |
| <a href="mailto:press@openbsd.org">press@openbsd.org</a> . |
<a href="mailto:press@openbsd.org">press@openbsd.org</a> . |
|
|
| "Undisclosed Company".</i><br><br> |
"Undisclosed Company".</i><br><br> |
| <hr> |
<hr> |
| |
|
| |
<h2><font color=#e00000><a name="edu">Research and other Non-Commercial Users</a></font></h2> |
| <dl> |
<dl> |
| |
|
| <li><a href="http://www.amnesty.org/">Amnesty International</a><br> |
<li><a href="http://www.amnesty.org/">Amnesty International</a><br> |
|
|
| Amnesty International is using OpenBSD for network firewalls and for |
Amnesty International is using OpenBSD for network firewalls and for |
| Virtual Private Networks (IPSec) between its sections around the world.<p> |
Virtual Private Networks (IPSec) between its sections around the world.<p> |
| |
|
| <li><a href="http://www.netsec.net/">Network Security Technologies, Inc.</a><br> |
<li><u>Prague Institute of Chemical Technology, Czech Republic</u><br> |
| This network and computer security firm uses OpenBSD for high speed |
The university uses OpenBSD on PCs to provide WWW, mail and shell access to |
| intrusion detection, virtual private networking, and data warehousing |
staff and students, and on a SPARC IPX for a time server and secondary DNS. |
| applications. Network Security Technologies, Inc is located in the |
The admin stations also run PCs with OpenBSD. |
| Washington DC metro area, and uses OpenBSD at several undisclosed |
<p> |
| military and government agency locations.<p> |
|
| |
|
| <li><a href="http://www.adobe.com/">Adobe Systems</a><br> |
|
| This software giant uses OpenBSD on a number of their network firewalls |
|
| and network testing systems.<p> |
|
| |
|
| <li><a href="http://www.ceesonora.org.mx">Sonora State Electoral Council, |
<li><a href="http://www.ceesonora.org.mx">Sonora State Electoral Council, |
| México</a><br> |
México</a><br> |
| El Consejo Estatal Electoral del Estado de Sonora usa OpenBSD para proteger |
El Consejo Estatal Electoral del Estado de Sonora usa OpenBSD para proteger |
| sus sistemas, estas aplicaciones estan en linea a traves de Internet,dando |
sus sistemas, estas aplicaciones estan en linea a traves de Internet, dando |
| resultados electorales al usuario, su red privada esta protegida por |
resultados electorales al usuario, su red privada esta protegida por |
| usuarios internos y externos.<br> |
usuarios internos y externos.<br> |
| <i>This government agency uses OpenBSD as a means to protect its |
<i>This government agency uses OpenBSD as a means to protect its |
|
|
| provides online electoral results to both internal and external users.</i> |
provides online electoral results to both internal and external users.</i> |
| <p> |
<p> |
| |
|
| <li><a href="http://www.wythenet.com">WytheNet, Inc.</a><br> |
<li><a href="http://www.ualberta.ca/">The University of Alberta</a><br> |
| |
uses OpenBSD on SPARC and Intel hardware for proxy servers, Kerberos |
| |
servers, print servers, service monitoring, pre-emptive security |
| |
scanning, and incident response. OpenBSD on Intel Hardware is used |
| |
for Firewalls and Lan-to-Lan VPN for the university's secured subnets |
| |
behind which all the University's new administrative systems |
| |
reside. OpenBSD is used for <A |
| |
HREF="http://www.ualberta.ca/~beck/authgw.html">authenticating |
| |
gateways</A> in front of public labs and public ethernet jacks in |
| |
approximately 40 locations across campus (about 1500 seats) to help |
| |
secure public internet access. The Department of Computing Science is using two |
| |
20 seat OpenBSD labs for undergraduate instruction.<p> |
| |
|
| This Virginia ISP uses OpenBSD on all of its servers, including primary and |
<li>The University of Michigan's <a href="http://www.citi.umich.edu/"> |
| secondary radius, primary and secondary DNS, mail, network monitoring, and |
Center for Information Technology Integration (CITI)</a><br> |
| several firewalls. They also sell OpenBSD based routers and firewalls to |
The CITI laboratory uses OpenBSD as the basis |
| their business DSL customers. |
for many intensive research projects. |
| |
OpenBSD is used for developing and analyzing |
| |
<a href= "http://www.citi.umich.edu/projects/sinciti/smartcard/">smart card</a> |
| |
contents and protocols, both in isolation and in real |
| |
applications. Plans are underway to issue cards |
| |
containing secure tokens for user logins and kerberos ticket acquisition. |
| |
OpenBSD is also used as a test platform for the |
| |
<a href= "http://www.citi.umich.edu/projects/mobile.html">mobile computing</a> |
| |
program at CITI. Internally "The Packet Vault" is an |
| |
OpenBSD machine that captures and records on cd-rom every packet on the |
| |
local 10 Mbps ethernet. Packet contents are encrypted to comply with |
| |
privacy requirements. This practice is used for intrusion detection. In |
| |
addition, a number of people within the department are using OpenBSD as |
| |
their primary operating system. <p> |
| |
|
| |
<li><a href="http://www.umn.edu/">The University of Minnesota</a><br> |
| |
This university uses OpenBSD on Sun Sparc workstations for network monitoring |
| |
and capacity planning. They query 53,000 (as of May 1999) different interfaces |
| |
via SNMP, logging more than 250MB of SNMP data to concatenated disk for |
| |
processing each month.<p> |
| |
|
| |
<li><u>Uppsala University Hospital, Department of Infectious Diseases</u><br> |
| |
The department uses OpenBSD for intranet servers, as well as for firewalls and |
| |
gateways to the Internet. |
| <p> |
<p> |
| |
|
| <li><a href="http://www.calyx.net">Calyx Internet Access Corp.</a><br> |
</dl> |
| |
|
| This company uses OpenBSD for running all mission-critical services |
<h2><font color=#e00000><a name="com">Commercial Users</a></font></h2> |
| including WWW, FTP, email, VPN traffic, and network monitoring at its |
|
| data centers in New York, Los Angeles, and Amsterdam. Even larger web |
|
| sites such as <a href="http://www.mitsubishicars.com">mitsubishicars.com</a>, |
|
| <a href="http://www.snapple.com">snapple.com</a>, |
|
| <a href="http://www.tanqueray.com">tanqueray.com</a> and others are no |
|
| challenge for OpenBSD.<p> |
|
| |
|
| |
<dl> |
| |
<li><a href="http://www.adobe.com/">Adobe Systems</a><br> |
| |
This software giant uses OpenBSD on a number of their network firewalls |
| |
and network testing systems.<p> |
| |
|
| <li><a href="http://www.alteon.com">Alteon Networks</a><br> |
<li><a href="http://www.alteon.com">Alteon Networks</a><br> |
| The gigabit ethernet |
The gigabit ethernet |
| hardware manufacturer, uses OpenBSD machines in varying capacities ranging |
hardware manufacturer, uses OpenBSD machines in varying capacities ranging |
|
|
| products. "The robustness, portability and commitment to security |
products. "The robustness, portability and commitment to security |
| of OpenBSD, as well as the ability to run on different hardware platforms, |
of OpenBSD, as well as the ability to run on different hardware platforms, |
| provides an ideal operating system for environments where security and high |
provides an ideal operating system for environments where security and high |
| availability are major concerns" , says Ivan Arce, CORE SDI's CEO.<p> |
availability are major concerns", says Ivan Arce, CORE SDI's CEO.<p> |
| |
|
| <li><a href="http://www.qpalzm.com">qpalzm.com services</a><br> |
<li><a href="http://www.fscinternet.com">FSC Internet Corp.</a><br> |
| qpalzm services runs OpenBSD to offer web hosting and shell accounts. The |
A large Information Security and Internet development firm located in |
| website offers daily updates on programming, gaming, irc, and other |
Toronto, has used OpenBSD and its IPsec support to construct |
| technobabble. An online MUD is also available. There is also a |
a secure and flexible VPN for a multi-billion dollar client. "We are |
| <a href="http://www.jscript.org">JavaScript Mailing List</a> |
delighted with OpenBSD's performance, reliability, and pro-active |
| using OpenBSD for the benefit of those interested in JavaScript |
attitude towards security," says a company spokesperson. "We intend |
| and DHTML. Incidently, qpalzm.com's busy WWW, FTP and mail server runs |
to use OpenBSD in many future projects. We believe strongly that |
| just fine with OpenBSD on a 200MHz Pentium Pro.<p> |
open-source solutions like OpenBSD are best able to provide the high |
| |
levels of security our clients require -- closed-source software |
| |
almost never receives the level of code review that OpenBSD is |
| |
committed to."<p> |
| |
|
| <li><a href="http://www.ioactive.com/">IOActive</a><br> |
<li><a href="http://www.netsec.net/">Network Security Technologies, Inc.</a><br> |
| IOActive provides WWW developers and hackers with a place to tinker on test |
This network and computer security firm uses OpenBSD for high speed |
| servers. The Seattle, WA, service provider also installs OpenBSD firewall, |
intrusion detection, virtual private networking, and data warehousing |
| VPN and IDS systems for regional businesses. "OpenBSD is fast, reliable, and I |
applications. Network Security Technologies, Inc is located in the |
| sleep a little better at night knowing I'm using it," says owner Josh Pennell. |
Washington DC metro area, and uses OpenBSD at several undisclosed |
| "The other thing I love about it is over half of the work is done to secure |
military and government agency locations.<p> |
| the box right after installation, saving my company copious amounts of time. |
|
| OpenBSD in my mind is the defacto standard for open source secure operating |
|
| systems. Everyone else is just trying to catch up".<p> |
|
| |
|
| <li><a href="http://www.umn.edu/">The University of Minnesota</a><br> |
|
| This university uses OpenBSD on Sun Sparc workstations for network monitoring |
|
| and capacity planning. They query 53,000 (as of May 1999) different interfaces |
|
| via SNMP, logging more than 250MB of SNMP data to concatenated disk for |
|
| processing each month.<p> |
|
| |
|
| <li><a href="http://www.empirenet.net/">Empire Net</a><br> An ISP in Bend, |
|
| Oregon, uses OpenBSD on AMD, Intel, and Sun based hardware, for routing, |
|
| firewalling, IPSec/VPN, <A |
|
| HREF="http://www.csl.sony.co.jp/person/kjc/software.html#ALTQ">bandwidth |
|
| limiting</a>, web hosting, database servers, network monitoring, intrusion |
|
| detection, mail servers, backup servers, cache servers, and workstations. |
|
| One of their OpenBSD routers handles traffic on between a T3 and eight fast |
|
| ethernet ports, also with several 802.1Q VLANs to separate networks for |
|
| co-location customers and business park tenants.<P> |
|
| |
|
| <li><a href="http://www.rtmx.com">RTMX Incorporated</a><br> |
<li><a href="http://www.rtmx.com">RTMX Incorporated</a><br> |
| This vendor produces an OpenBSD derived, IEEE POSIX real time extended |
This vendor produces an OpenBSD derived, IEEE POSIX real time extended |
| system solution. RTMX fully re-implemented previously developed |
system solution. RTMX fully re-implemented previously developed |
|
|
| to be released soon. RTMX Inc. is also a licensed OSF Motif house, and |
to be released soon. RTMX Inc. is also a licensed OSF Motif house, and |
| has ported Motif 1.2.3 to most of the supported platforms.<p> |
has ported Motif 1.2.3 to most of the supported platforms.<p> |
| |
|
| <li><a href="http://www.rtmx.net">RTMX Networking Services</a><br> |
<li><a href="http://www.softquad.com/">SoftQuad Software Inc.</a><br> |
| This North Carolina ISP is using OpenBSD on multiple servers for Web, |
This maker of HTML and XML editing software uses OpenBSD for their |
| DNS and over 1000 e-mail users in their community just West of |
gateway/firewall and FTP services.<p> |
| Research Triangle. There is a mix of AMD K-6, MicroSPARC-II and |
|
| PowerPC systems in use, with more customer sub-net servers coming |
|
| on-line. RTMX.NET mirrors the OpenBSD |
|
| <a href="http://openbsd.groupbsd.org">WWW</a> |
|
| and <a href="ftp://openbsd.groupbsd.org/pub/OpenBSD/">ftp</a> sites, |
|
| and also provides an anonymous CVS repository |
|
| (CVSROOT=anoncvs@openbsd.groupbsd.org:/cvs), all thanks to 47GB of |
|
| disk space and a dedicated T1 connection.<p> |
|
| |
|
| <li><a href=http://www.poppe.com>Poppe Tyson Europe</a> |
<li><a href="http://www.xtime.com/">Xtime</a><br> |
| |
Xtime's core technology is the Time Inventory Management Engine, or |
| |
TIMEngine ™. This technology brings the benefits of e-commerce to |
| |
service merchants everywhere, making their time-based inventory available |
| |
via the web or phone, and delivering powerful new customer relationship |
| |
management capabilities. Xtime leverages the power of OpenBSD for 75% |
| |
of their mission-critical network infrastructure, which includes Mail |
| |
servers, DNS servers, several VPN/Firewalls, secure logging hosts, |
| |
monitoring/IDS and production web servers. OpenBSD is the de-facto OS |
| |
used by the Xtime network operations department, boasting a 100% usage |
| |
rate amongst the department for desktop workstations. |
| |
<p> |
| |
|
| is using OpenBSD as a primary DNS, mailserver for |
</dl> |
| 100+ mailboxes, and as their Website Development server for over 50 |
|
| sites.<p> |
|
| |
|
| <li><a href="http://www.citi.umich.edu/">The Center for Information Technology Integration (CITI)</a><br> |
<h2><font color=#e00000><a name="isp">Internet Service Providers</a></font></h2> |
| This laboratory at the University of Michigan uses OpenBSD as the basis |
<p> |
| for many intensive research projects. |
One goal of any ISP is to keep their customers' sites and accounts safe |
| OpenBSD is used for developing and analyzing |
from intrusion. OpenBSD's security record speaks for itself, so many |
| <a href= "http://www.citi.umich.edu/projects/sinciti/smartcard/">smart card</a> |
ISPs use OpenBSD for this reason alone. However, others use OpenBSD for |
| contents and protocols, both in isolation and in real |
many, if not most, of their services. |
| applications. Plans are underway to issue cards |
<dl> |
| containing secure tokens for user logins and kerberos ticket acquisition. |
|
| OpenBSD is also used as a test platform for the |
|
| <a href= "http://www.citi.umich.edu/projects/mobile.html">mobile computing</a> |
|
| program at CITI. Internally "The Packet Vault" is an |
|
| OpenBSD machine that captures and records on cd-rom every packet on the |
|
| local 10 Mbps ethernet. Packet contents are encrypted to comply with |
|
| privacy requirements. This practice is used for intrusion detection. In |
|
| addition, a number of people within the department are using OpenBSD as |
|
| their primary operating system. <p> |
|
| |
|
| <li><a href="http://www.ualberta.ca/">The University of Alberta</a><br> |
<li><a href="http://www.bsws.de/">BS Web Services</a><br> |
| uses OpenBSD on SPARC and Intel hardware for proxy servers, Kerberos |
BS Web Services, a german ISP, is using OpenBSD servers for primary and |
| servers, print servers, service monitoring, pre-emptive security |
secondary DNS (djbdns), primary Web hosting (Apache) and |
| scanning, and incident response. OpenBSD on Intel Hardware is used |
primary mail services (qmail-ldap). They also run mission critical |
| for Firewalls and Lan-to-Lan VPN for the university's secured subnets |
LDAP Authentification Backend on OpenBSD (OpenLDAP), as well as MySQL databases. |
| behind which all the University's new administrative systems |
Hostmaster Henning Brauer writes:<br> |
| reside. OpenBSD is used for <A |
<i>"OpenBSD needed some tuning on these machines, especially bigger maxprocs |
| HREF="http://www.ualberta.ca/~beck/authgw.html">authenticating |
and maxfiles, but it runs great on hardware that's not so speedy. We are using |
| gateways</A> in front of public labs and public ethernet jacks in |
AMD Athlons (mostly the new Thunderbirds) and AMD K6-III's. We also have some |
| approximately 40 locations across campus (about 1500 seats) to help |
internal machines running OpenBSD as testbeds and printservers and all sorts of |
| secure public internet access. The Department of Computing Science is using two |
other purposes. We plan to move some more machines to OpenBSD, especially our |
| 20 seat OpenBSD labs for undergraduate instruction.<p> |
firewalls. Unfortunately we are still running some closed source software, but |
| |
we'd like to try the Linux emulation. OpenBSD's behaviour under high load, |
| |
especially under DoS attacks, just doesn't compare to the Linux we used before |
| |
- Linux went extremely slow, while OpenBSD doesn't even care (same |
| |
hardware!)"</i>. |
| |
<p> |
| |
|
| |
<li><a href="http://www.calyx.net">Calyx Internet Access Corp.</a><br> |
| |
This company uses OpenBSD for running all mission-critical services |
| |
including WWW, FTP, email, VPN traffic, and network monitoring at its |
| |
data centers in New York, Los Angeles, and Amsterdam. Even larger web |
| |
sites such as |
| |
<a href="http://www.snapple.com">snapple.com</a>, |
| |
<a href="http://www.tanqueray.com">tanqueray.com</a> and others are no |
| |
challenge for OpenBSD.<p> |
| |
|
| <li><a href=http://www.crown.net>Crown.Net</a><br> |
<li><a href=http://www.crown.net>Crown.Net</a><br> |
| This internet service provider is running almost completely on |
This internet service provider is running almost completely on |
|
|
| OpenBSD/sparc and our shell server and several co-located servers are |
OpenBSD/sparc and our shell server and several co-located servers are |
| running OpenBSD/i386.<p> |
running OpenBSD/i386.<p> |
| |
|
| <li><a href="http://www.fscinternet.com">FSC Internet Corp.</a><br> |
<li><a href="http://www.elixor.net/">Elixor Networks Inc.</a><br> |
| A large Information Security and Internet development firm located in |
Elixor Networks uses OpenBSD on AMD hardware to provide shell accounts, |
| Toronto, has used OpenBSD and its IPsec support to construct |
website hosting, and domain name hosting. |
| a secure and flexible VPN for a multi-billion dollar client. "We are |
<p> |
| delighted with OpenBSD's performance, reliability, and pro-active |
|
| attitude towards security," says a company spokesperson. "We intend |
|
| to use OpenBSD in many future projects. We believe strongly that |
|
| open-source solutions like OpenBSD are best able to provide the high |
|
| levels of security our clients require -- closed-source software |
|
| almost never receives the level of code review that OpenBSD is |
|
| committed to."<p> |
|
| |
|
| <li><a href="http://www.softquad.com/">SoftQuad Software Inc.</a><br> |
<li><a href="http://www.empirenet.net/">Empire Net</a><br> |
| This maker of HTML and XML editing software, uses OpenBSD for their |
An ISP in Bend, Oregon, uses OpenBSD on AMD, Intel, and Sun based hardware, |
| gateway, FTP, and web services.<p> |
for routing, firewalling, IPSec/VPN, <A |
| |
HREF="http://www.csl.sony.co.jp/person/kjc/software.html#ALTQ">bandwidth |
| |
limiting</a>, web hosting, database servers, network monitoring, intrusion |
| |
detection, mail servers, backup servers, cache servers, and workstations. |
| |
One of their OpenBSD routers handles traffic on between a T3 and eight fast |
| |
ethernet ports, also with several 802.1Q VLANs to separate networks for |
| |
co-location customers and business park tenants.<P> |
| |
|
| <li><a href="http://www.hobbiton.org/">Hobbiton.org</a><br> |
<li><a href="http://www.hobbiton.org/">Hobbiton.org</a><br> |
| This ISP uses OpenBSD to run their free shell server, as well as other |
This ISP uses OpenBSD to run their free shell server, as well as other |
|
|
| problem and, as an added bonus, the systems have been more stable." |
problem and, as an added bonus, the systems have been more stable." |
| <p> |
<p> |
| |
|
| <li>Prague Institute of Chemical Technology, Czech Republic<br> |
<li><a href="http://www.hurontario.net">Hurontario.net</a><br> |
| The university uses OpenBSD on PCs to provide WWW, mail and shell access to |
In the Headwaters region of Ontario, Canada, Hurontario.net uses OpenBSD |
| staff and students, and on a SPARC IPX for a time server and secondary DNS. |
on several of their own and their customers' machines. |
| The admin stations also run PCs with OpenBSD. |
<p> |
| |
|
| |
<li><a href="http://www.ioactive.com/">IOActive</a><br> |
| |
IOActive provides WWW developers and hackers with a place to tinker on test |
| |
servers. The Seattle, WA, service provider also installs OpenBSD firewall, |
| |
VPN and IDS systems for regional businesses. "OpenBSD is fast, reliable, and I |
| |
sleep a little better at night knowing I'm using it," says owner Josh Pennell. |
| |
"The other thing I love about it is over half of the work is done to secure |
| |
the box right after installation, saving my company copious amounts of time. |
| |
OpenBSD in my mind is the defacto standard for open source secure operating |
| |
systems. Everyone else is just trying to catch up".<p> |
| |
|
| |
<li><a href=http://www.poppe.com>Poppe Tyson Europe</a> |
| |
is using OpenBSD as a primary DNS, mailserver for |
| |
100+ mailboxes, and as their Website Development server for over 50 |
| |
sites.<p> |
| |
|
| |
<li><a href="http://www.qpalzm.com">qpalzm.com services</a><br> |
| |
qpalzm services runs OpenBSD to offer web hosting and shell accounts. The |
| |
website offers daily updates on programming, gaming, irc, and other |
| |
technobabble. An online MUD is also available. There is also a |
| |
<a href="http://www.jscript.org">JavaScript Mailing List</a> |
| |
using OpenBSD for the benefit of those interested in JavaScript |
| |
and DHTML. Incidently, qpalzm.com's busy WWW, FTP and mail server runs |
| |
just fine with OpenBSD on a 200MHz Pentium Pro.<p> |
| |
|
| |
<li><a href="http://www.rtmx.net">RTMX Networking Services</a><br> |
| |
This North Carolina ISP is using OpenBSD on multiple servers for Web, |
| |
DNS and over 1000 e-mail users in their community just West of |
| |
Research Triangle. There is a mix of AMD K-6, MicroSPARC-II and |
| |
PowerPC systems in use, with more customer sub-net servers coming |
| |
on-line. RTMX.NET mirrors the OpenBSD |
| |
<a href="http://openbsd.groupbsd.org">WWW</a> |
| |
and <a href="ftp://openbsd.groupbsd.org/pub/OpenBSD/">ftp</a> sites, |
| |
and also provides an anonymous CVS repository |
| |
(CVSROOT=anoncvs@openbsd.groupbsd.org:/cvs), all thanks to 47GB of |
| |
disk space and a dedicated T1 connection.<p> |
| |
|
| |
<li><a href="http://www.wythenet.com">WytheNet, Inc.</a><br> |
| |
This Virginia ISP uses OpenBSD on all of its servers, including primary and |
| |
secondary radius, primary and secondary DNS, mail, network monitoring, and |
| |
several firewalls. They also sell OpenBSD based routers and firewalls to |
| |
their business DSL customers. |
| <p> |
<p> |
| |
|
| </dl> |
</dl> |
![[BACK]](/icons/back.gif){kind=icon}
Return to users.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www