File: [local] / www / Attic / users.html (download) (as text)
Revision 1.77, Wed May 1 04:57:07 2002 UTC (22 years, 1 month ago) by millert
Branch: MAIN
Changes since 1.76: +5 -1 lines
Add entry for C2PRO, an Indonesian ISP
|
<html>
<head>
<meta name=KEYWORDS content="OpenBSD,commercial,operating system,Unix,Un*x,BSD,linux,secure,secure,secure">
<title>OpenBSD at work</title>
</head>
<BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#23238E">
<img alt="[OpenBSD]" height=30 width=141 SRC="images/smalltitle.gif">
<p>
<h2><font color=#e00000>Users</font><hr></h2>
The term "users" has several connotations. <EM>End users</EM> often
want to meet other users of the system, to share ideas, problems and solutions,
and discuss the system over a meal or a beer. One of the best ways to do this
is with one of our
<a href="groups.html">User Groups worldwide</a>.
<p>
Another connotation of the term is "who is using the system, and for what?",
and that is the subject of the rest of this page. These <a
href="#com">companies</a> and organizations trust OpenBSD's rigorous code audit
and security-first development model. They use the system to build firewalls,
intrusion detection systems, or general purpose servers.
<a href="#edu">University researchers</a> and IT department developers often
have similar security and stability requirements and choose OpenBSD.
Many <a href="#isp">Internet Service Providers</a> find OpenBSD's
security features hard to resist.
<p>
If you would like to be listed on this page, send the information to
<a href="mailto:press@openbsd.org">press@openbsd.org</a> .
<br><br>
<i><b>NOTE:</b> For reasons of security, companies can ask us to withhold
their names, or those of their clients. They would then appear as
"Undisclosed Company".</i><br><br>
<hr>
<h2><font color=#e00000><a name="edu">Research and other Non-Commercial Users</a></font></h2>
<dl>
<li><A HREF="http://www.iztacala.unam.mx">ENEP Iztacala</A><br>
ENEP Iztacala is one of <A HREF="http://www.unam.mx">UNAM</A>'s peripheral
schools. UNAM is Mexico's largest University, with over 250,000 students,
and at ENEP Iztacala we have a bit over 10,000 students. This is mostly
a health-oriented campus, so the computer area is not a big one.
<br>
We run as servers currently two OpenBSD, one Solaris and two Linux boxes.
With OpenBSD we handle the main web site (happily running on a 7-year old
Sparcstation 5), part of our mail accounts and our firewall.
<br>
There are two additional OpenBSD computers, in our development area. One of
them acts as a network monitor (using Snort) and will shortly be moved to
sit next to the firewall, and the other one serves as an OpenBSD CVS
mirror (<strong>CVSROOT=anoncvs@anoncvs.mx.openbsd.org:/cvs</strong>).
<br>
We do not do run very creative stuff, we just use OpenBSD for what it does
best: run smoothly, even on older hardware, freeing us from most concerns
and doubts we have about our other operating systems.
<br>
We also host a Spanish OpenBSD mailing list (openbsd@tlali.iztacala.unam.mx).
<p>
<li><a href="http://www.hus.fi/group/">Helsinki University Central Hospital, Finland</a><br>
The Hospital District of Helsinki and Uusimaa (HUS), with staff totaling approx. 18.000,
provides specialized medical care for the residents of the capital and other member
local authorities. OpenBSD is used for DNS, mail gateway, VPN and firewall solutions both
on the internal campus network and on the Internet.
<p>
<li><u>INFN Italian Institute of Nuclear Physics, Florence, Italy</u><br>
This non-profit government research and academic institution uses OpenBSD
for domain name service and IPF firewall packet filtering.
<p>
<li><u>Prague Institute of Chemical Technology, Czech Republic</u><br>
The university uses OpenBSD on PCs to provide WWW, mail and shell access to
staff and students, and on a SPARC IPX for a time server and secondary DNS.
The admin stations also run PCs with OpenBSD.
<p>
<li><a href="http://www.ceesonora.org.mx">Sonora State Electoral Council,
México</a><br>
El Consejo Estatal Electoral del Estado de Sonora usa OpenBSD para proteger
sus sistemas, estas aplicaciones estan en linea a traves de Internet, dando
resultados electorales al usuario, su red privada esta protegida por
usuarios internos y externos.<br>
<i>This government agency uses OpenBSD as a means to protect its
network as well as for intrusion detection. The OpenBSD based VPN
provides online electoral results to both internal and external users.</i>
<p>
<li><a href="http://www.ualberta.ca/">The University of Alberta</a><br>
uses OpenBSD on SPARC and Intel hardware for proxy servers, Kerberos
servers, print servers, service monitoring, pre-emptive security
scanning, and incident response. OpenBSD on Intel Hardware is used
for Firewalls and Lan-to-Lan VPN for the university's secured subnets
behind which all the University's new administrative systems
reside. OpenBSD is used for <A
HREF="http://www.ualberta.ca/~beck/authgw.html">authenticating
gateways</A> in front of public labs and public ethernet jacks in
approximately 40 locations across campus (about 1500 seats) to help
secure public internet access. The Department of Computing Science is using two
20 seat OpenBSD labs for undergraduate instruction.<p>
<li>The University of Michigan's <a href="http://www.citi.umich.edu/">
Center for Information Technology Integration (CITI)</a><br>
The CITI laboratory uses OpenBSD as the basis
for many intensive research projects.
OpenBSD is used for developing and analyzing
<a href= "http://www.citi.umich.edu/projects/sinciti/smartcard/">smart card</a>
contents and protocols, both in isolation and in real
applications. Plans are underway to issue cards
containing secure tokens for user logins and kerberos ticket acquisition.
OpenBSD is also used as a test platform for the
<a href= "http://www.citi.umich.edu/projects/mobile.html">mobile computing</a>
program at CITI. Internally "The Packet Vault" is an
OpenBSD machine that captures and records on cd-rom every packet on the
local 10 Mbps ethernet. Packet contents are encrypted to comply with
privacy requirements. This practice is used for intrusion detection. In
addition, a number of people within the department are using OpenBSD as
their primary operating system. <p>
<li><a href="http://www.umn.edu/">The University of Minnesota</a><br>
This university uses OpenBSD on Sun Sparc workstations for network monitoring
and capacity planning. They query 53,000 (as of May 1999) different interfaces
via SNMP, logging more than 250MB of SNMP data to concatenated disk for
processing each month.<p>
<li><u>Uppsala University Hospital, Department of Infectious Diseases</u><br>
The department uses OpenBSD for intranet servers, as well as for firewalls and
gateways to the Internet.
<p>
<li><a href="http://www.belperschool.co.uk">Belper School, Belper, Derbyshire, UK</a><br>
The Belper School uses OpenBSD machines as Samba file servers for around
1100 students as well as for student web hosting and a firewall/NAT gateway.
<p>
<li><a href="http://fortthunder.org/music/ff/index.html">"Forcefield" art installation</a><br>
Part of the audio and lighting for the <em>Forcefield</em> art installation
at the 2002 Biennial exhibition at the Whitney Museum of American Art in
New York is being controlled by a VAXstation 3100 running OpenBSD.
OpenBSD was chosen because it is simple and reliable.
<p>
</dl>
<h2><font color=#e00000><a name="com">Commercial Users</a></font></h2>
<dl>
<li><a href="http://www.adobe.com/">Adobe Systems</a><br>
This software giant uses OpenBSD on a number of their network firewalls
and network testing systems.<p>
<li><a href="http://www.alteon.com">Alteon Networks</a><br>
The gigabit ethernet
hardware manufacturer, uses OpenBSD machines in varying capacities ranging
from testbeds to gateways.<p>
<li><a href="http://www.core-sdi.com">CORE SDI S.A.</a><br>
An Information Security company based in Buenos Aires, Argentina uses OpenBSD
as the main platform for operation and development of information security related
products. "The robustness, portability and commitment to security
of OpenBSD, as well as the ability to run on different hardware platforms,
provides an ideal operating system for environments where security and high
availability are major concerns", says Ivan Arce, CORE SDI's CEO.<p>
<li><a href="http://www.fscinternet.com">FSC Internet Corp.</a><br>
A large Information Security and Internet development firm located in
Toronto, has used OpenBSD and its IPsec support to construct
a secure and flexible VPN for a multi-billion dollar client. "We are
delighted with OpenBSD's performance, reliability, and pro-active
attitude towards security," says a company spokesperson. "We intend
to use OpenBSD in many future projects. We believe strongly that
open-source solutions like OpenBSD are best able to provide the high
levels of security our clients require -- closed-source software
almost never receives the level of code review that OpenBSD is
committed to."<p>
<li><a href="http://www.netsec.net/">Network Security Technologies, Inc.</a><br>
This network and computer security firm uses OpenBSD for high speed
intrusion detection, virtual private networking, and data warehousing
applications. Network Security Technologies, Inc is located in the
Washington DC metro area, and uses OpenBSD at several undisclosed
military and government agency locations.<p>
<li><a href="http://www.softquad.com/">SoftQuad Software Inc.</a><br>
This maker of HTML and XML editing software uses OpenBSD for their
gateway/firewall and FTP services.<p>
<li><a href="http://www.xtime.com/">Xtime</a><br>
Xtime's core technology is the Time Inventory Management Engine, or
TIMEngine ™. This technology brings the benefits of e-commerce to
service merchants everywhere, making their time-based inventory available
via the web or phone, and delivering powerful new customer relationship
management capabilities. Xtime leverages the power of OpenBSD for 75%
of their mission-critical network infrastructure, which includes Mail
servers, DNS servers, several VPN/Firewalls, secure logging hosts,
monitoring/IDS and production web servers. OpenBSD is the de-facto OS
used by the Xtime network operations department, boasting a 100% usage
rate amongst the department for desktop workstations.
<p>
</dl>
<h2><font color=#e00000><a name="isp">Internet Service Providers</a></font></h2>
<p>
One goal of any ISP is to keep their customers' sites and accounts safe
from intrusion. OpenBSD's security record speaks for itself, so many
ISPs use OpenBSD for this reason alone. However, others use OpenBSD for
many, if not most, of their services.
<dl>
<li><a href="http://www.anonix.net/">Anonix</a><br>
Anonix is an ISP offering anonymous email, shell, and web hosting
services. All of these, plus DNS and billing, are run on OpenBSD.<br>
<i>"We feel confident in its security, and like its clean, layered approach.
The basic install doesn't have huge amounts of unnecessary baggage; we can
be sure that everything on our systems belongs there."</i>
<p>
<li><a href="http://www.bsws.de/">BS Web Services</a><br>
BS Web Services, a german ISP, is using OpenBSD servers for primary and
secondary DNS (djbdns), primary Web hosting (Apache) and
primary mail services (qmail-ldap). They also run mission critical
LDAP Authentication Backend on OpenBSD (OpenLDAP), as well as MySQL databases.
Hostmaster Henning Brauer writes:<br>
<i>"OpenBSD needed some tuning on these machines, especially bigger maxprocs
and maxfiles, but it handles extraordinary loads on ordinary hardware. We are
using AMD Athlons (mostly the new Thunderbirds) and AMD K6-III's. We also have
some internal machines running OpenBSD as testbeds and printservers and all
sorts of other purposes. We plan to move some more machines to OpenBSD,
especially our firewalls. Unfortunately we are still running some closed
source software, but we'd like to try the Linux emulation. OpenBSD's
behaviour under high load, especially under DoS attacks, just doesn't
compare to the Linux we used before - Linux went extremely slow, while
OpenBSD doesn't even care (same hardware!)"</i>.
<p>
<li><a href="http://www.calyx.net">Calyx Internet Access Corp.</a><br>
This company uses OpenBSD for running all mission-critical services
including WWW, FTP, email, VPN traffic, and network monitoring at its
data centers in New York, Los Angeles, and Amsterdam. Even larger web
sites such as
<a href="http://www.snapple.com">snapple.com</a>,
<a href="http://www.tanqueray.com">tanqueray.com</a> and others are no
challenge for OpenBSD.<p>
<li><a href=http://c2pro.net/>C2PRO</a><br>
C2PRO is an Indonesian internet service provider using OpenBSD for their
web, mail, shell and network monitoring servers.<p>
<li><a href=http://www.crown.net>Crown.Net</a><br>
This internet service provider is running almost completely on
a mixture of OpenBSD/sparc and OpenBSD/i386. Our Web Servers(2), Mail
Server, Primary and Secondary DNS, and Radius servers all are running
OpenBSD/sparc and our shell server and several co-located servers are
running OpenBSD/i386.<p>
<li><a href="http://www.elixor.net/">Elixor Networks Inc.</a><br>
Elixor Networks uses OpenBSD on AMD hardware to provide shell accounts,
website hosting, and domain name hosting.
<p>
<li><a href="http://www.empirenet.net/">Empire Net</a><br>
An ISP in Bend, Oregon, uses OpenBSD on AMD, Intel, and Sun based hardware,
for routing, firewalling, IPsec (VPN), <A
HREF="http://www.csl.sony.co.jp/person/kjc/software.html#ALTQ">bandwidth
limiting</a>, web hosting, database servers, network monitoring, intrusion
detection, mail servers, backup servers, cache servers, and workstations.
One of their OpenBSD routers handles traffic on between a T3 and eight fast
ethernet ports, also with several 802.1Q VLANs to separate networks for
co-location customers and business park tenants. An OpenBSD mail server
handles e-mail storage/retrieval and RADIUS authentication for over 5,000 users.
Several OpenBSD web servers each handle over 300 web sites.<P>
<li><a href="http://www.globalwire.se/">Globalwire Communications</a><br>
Globalwire Communications is using OpenBSD on their Short Message
Service (SMS) gateway and database servers.
<p>
<li><a href="http://www.hobbiton.org/">Hobbiton.org</a><br>
This ISP used OpenBSD to run their free shell server for many years
(it was shut down in November, 2001 due to rising costs of running
a "free" service). They also use OpenBSD on other systems.
The shell server, a single AMD Athlon 650, handled at the end
101,796 users. "We tried OpenBSD after having constant security
problems with other operating systems", said Hobbiton's Leif
Pedersen. "Since then, security in the operating system has not been a
problem and, as an added bonus, the systems have been more stable."
<p>
<li><a href="http://www.hurontario.net">Hurontario.net</a><br>
In the Headwaters region of Ontario, Canada, Hurontario.net uses OpenBSD
on several of their own and their customers' machines.
<p>
<li><a href="http://www.ioactive.com/">IOActive</a><br>
IOActive provides WWW developers and hackers with a place to tinker on test
servers. The Seattle, WA, service provider also installs OpenBSD firewall,
VPN and IDS systems for regional businesses. "OpenBSD is fast, reliable, and I
sleep a little better at night knowing I'm using it," says owner Josh Pennell.
"The other thing I love about it is over half of the work is done to secure
the box right after installation, saving my company copious amounts of time.
OpenBSD in my mind is the defacto standard for open source secure operating
systems. Everyone else is just trying to catch up".<p>
<li><a href=http://www.poppe.com>Poppe Tyson Europe</a>
is using OpenBSD as a primary DNS, mailserver for
100+ mailboxes, and as their Website Development server for over 50
sites.<p>
<li><a href="http://www.qpalzm.com">qpalzm.com services</a><br>
qpalzm services runs OpenBSD to offer web hosting and shell accounts. The
website offers daily updates on programming, gaming, irc, and other
technobabble. An online MUD is also available. There is also a
<a href="http://www.jscript.org">JavaScript Mailing List</a>
using OpenBSD for the benefit of those interested in JavaScript
and DHTML. Incidently, qpalzm.com's busy WWW, FTP and mail server runs
just fine with OpenBSD on a 200MHz Pentium Pro.<p>
<li><a href="http://www.rtmx.net">RTMX Networking Services</a><br>
This North Carolina ISP is using OpenBSD on multiple servers for Web,
DNS and over 1000 e-mail users in their community just West of
Research Triangle. There is a mix of AMD K-6, MicroSPARC-II and
PowerPC systems in use, with more customer sub-net servers coming
on-line. RTMX.NET mirrors the OpenBSD
<a href="http://openbsd.groupbsd.org">WWW</a>
and <a href="ftp://openbsd.groupbsd.org/pub/OpenBSD/">ftp</a> sites,
and also provides an anonymous CVS repository
(CVSROOT=anoncvs@openbsd.groupbsd.org:/cvs), all thanks to 47GB of
disk space and a dedicated T1 connection.<p>
<li><a href="http://start.swebase.com/?sida=maskiner">Swebase Network</a><br>
This ISP in Sweden uses OpenBSD for Web, DNS and mail servers.
<p>
<li><a href="http://www.wythenet.com">WytheNet, Inc.</a><br>
This Virginia ISP uses OpenBSD on all of its servers, including primary and
secondary radius, primary and secondary DNS, mail, network monitoring, and
several firewalls. They also sell OpenBSD based routers and firewalls to
their business DSL customers.
<p>
<li><a href="http://www.vovoid.com">Vovoid Software & Multimedia.</a><br>
Vovoid Software & Multimedia in Gothenburg, Sweden runs OpenBSD for
Firewalls, Web Servers, Mail Servers and DNS Servers. "The choice
of OpenBSD for our production servers is obvious and an important
keystone in our security strategy."
<p>
</dl>
<hr>
<a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
<a href=mailto:www@openbsd.org>www@openbsd.org</a>
<br><small>$OpenBSD: users.html,v 1.77 2002/05/01 04:57:07 millert Exp $</small>
</body>
</html>
![[BACK]](/icons/back.gif){kind=icon}
Return to users.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www