Annotation of www/index.html, Revision 1.53
1.18 fn 1: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML Strict//EN">
2: <html>
1.1 deraadt 3: <head>
4: <title>OpenBSD</title>
1.19 fn 5: <base href=http://www.openbsd.org/>
1.18 fn 6: <link rev=made href=mailto:www@openbsd.org>
7: <meta name="resource-type" content="document">
8: <meta name="description" content="the main OpenBSD page">
9: <meta name="keywords" content="openbsd,main">
10: <meta name="distribution" content="global">
11: <meta name="copyright" content="This document copyright 1996 by OpenBSD, Inc.">
1.1 deraadt 12: </head>
1.18 fn 13:
14: <body>
15:
1.31 deraadt 16: <h1>OpenBSD</h1>
17: <br>
1.37 deraadt 18: <img src="head.gif">
1.30 deraadt 19: <br>
20: <small>The picture is Copyright (C) 1996 Shawn Mueller</small>
21: <br>
22: <h1>OpenBSD</h1>
1.1 deraadt 23:
1.18 fn 24: <p>
1.1 deraadt 25: The OpenBSD project involves continuing development of a multiplatform
26: 4.4BSD-based Unix-like operating system.
1.18 fn 27: </p>
1.1 deraadt 28:
29: <p>
1.22 deraadt 30: <ul>
31: <li><a href=#additions>Changes Relative to other *BSD's</a>
32: <li><a href=#curplat>Supported platforms</a>
33: <li><a href=#futplat>New platforms under development</a>
1.50 deraadt 34: <li><a href=#devel>How we help developers and users</a>
1.48 deraadt 35: <li><a href=#ftp>FTP mirrors</a>
1.22 deraadt 36: <li><a href=#snapshots>Binary snapshots</a>
1.50 deraadt 37: <li><a href=#maillist>Mailing Lists</a>
38: <li><a href=#gnats>Bug tracking</a>
39: <li><a href=#sup>Sup</a>
40: <li><a href=#anoncvs>AnonCVS</a>
1.22 deraadt 41: <li><a href=goals.html>OpenBSD project goals</a>
42: </ul>
43: </p>
44:
45: <h3><hr><a name=additions>Changes Relative to other *BSD's.</a></h3>
46:
47: <p>
1.1 deraadt 48: OpenBSD looks a lot like NetBSD (which it is derived from, following
49: the 4.4BSD roots), but is now being developed seperately. Good changes
50: from other free operating systems will be merged in (of course, depending
1.24 deraadt 51: on various factors like developer time for example.) OpenBSD tracks
52: NetBSD changes very closely; say anywhere between 2 days to 10 days
53: behind the state of NetBSD-current all the time. Hence you can truly
54: say that OpenBSD is NetBSD <b>PLUS MORE STUFF</b>.
1.18 fn 55: </p>
1.1 deraadt 56:
57: <p>
1.22 deraadt 58: Various additions have been made. This is only a small partial list of
1.25 deraadt 59: the major machine independent changes (ie. it is the most interesting
60: changes or what people ask about most often). Check the specific port
61: you are interested in for further details of that port -- many of them
62: have been extended too.
1.1 deraadt 63: <ul>
1.35 deraadt 64: <li>Many many NetBSD PR's fixed (which NetBSD has not yet fixed)
1.22 deraadt 65: <li>New curses library, including libform, libpanel and libmenu.
1.25 deraadt 66: <li>a termlib library which understands termcap.db, needed for new curses.
67: <li>The FreeBSD ports subsystem was integrated and is usable by you!
1.22 deraadt 68: <li>ipfilter for filtering dangerous packets
69: <li>better ELF support
1.25 deraadt 70: <li>nlist() that understands ELF, ECOFF, and a.out, allowing non-a.out ports
71: to use kvm utilies
1.22 deraadt 72: <li>Verbatim integration of the GNU tools (using a wrapper Makefile)
73: <li>All the pieces needed for cross compilation are in the source tree.
74: <li>Some LKM support in the tree.
75: <li>ATAPI support (should work on all ISA busses)
1.25 deraadt 76: <li>new scsi, md5, pkg_* commands
1.22 deraadt 77: <li>Numerous security related fixes
1.25 deraadt 78: <li>Kerberos and other crypto in the source tree that is exportable
79: <li>Solid YP master, server, and client capabilities.
1.22 deraadt 80: <li>/dev/rnd -- source of random data
1.23 deraadt 81: <li>In-kernel update(8) with an adaptive algorithm
1.25 deraadt 82: <li>Some ddb improvements and extensions
83: <li>Numerous scsi fixes
1.28 deraadt 84: <li>new system calls: rfork(), minherit(), poll().
85: <li>select() that can handle any amount of file descriptors.
1.29 deraadt 86: <li>kernfs extensions
87: <li>ATM support (support for one company's sparc & i386 cards available)
1.33 deraadt 88: <li>Boot kernels with "-c" to edit/enable/disable device configuration tables
1.38 deraadt 89: <li>pax as tar, gnutar is toast
1.42 deraadt 90: <li>using AT&T awk, gawk is toast
1.38 deraadt 91: <li>Even more security fixes.
1.47 deraadt 92: <li>Accepts FreeBSD MD5 passwords in password maps, soon will be able to
93: generate them too
1.40 deraadt 94: <li>Linux ext2fs and BSD4.4 LFS support being worked on.
1.47 deraadt 95: <li>Working ATAPI audio support.
1.51 deraadt 96: <li>terminfo database support.
1.53 ! deraadt 97: <li>Fortran in the tree.
! 98: <li>The most secure rdist support anywhere.
! 99: <li>randomized port allocation from bind() and bindresvport() -- security
! 100: via unpredictability.
! 101: <li>Protection from the udp spamming and ftp bounce attacks.
! 102: <li>Significantly improved ftp daemon.
! 103: <li>Numerous more security policy and implimentation improvements (OpenBSD
! 104: defaults to installing in a very secure mode)
! 105: <li>zlib (non-GPL'd gzip-compatible library)
! 106: <li>Newest version of ppp, vi,
1.1 deraadt 107: </ul>
1.18 fn 108: </p>
1.1 deraadt 109:
1.18 fn 110: <h3><hr><a name=curplat>Platforms currently supported.</a></h3>
1.1 deraadt 111:
1.18 fn 112: <p>
1.1 deraadt 113: Note: for some of these platforms, the platform-independent code may
114: be identical to that found in NetBSD because there isn't a specific
115: OpenBSD developer. For other ports the differences are significant.
116: If you find an empty page that means nothing of consequence that is
117: directly port-specific has changed from NetBSD. (Of course there are
118: differences, but they just aren't in the /sys/arch/XXXX directory).
1.18 fn 119: </p>
1.1 deraadt 120:
1.18 fn 121: <p>
1.1 deraadt 122: <dl>
1.41 deraadt 123: <dt><a href=alpha.html>Alpha</a> <dd> DEC Alpha-based machines.
124: <dt><a href=amiga.html>Amiga</a> <dd> Commodore Amiga.
125: <dt><a href=arc.html>ARC</a> <dd> ARC R4000/R4400 machines (including PICA)
126: <dt><a href=arm32.html>Arm32</a> <dd> Acorn ARM6+ computers.
127: <dt><a href=atari.html>Atari</a> <dd> Atari TT and Falcon models.
128: <dt><a href=hp300.html>HP300</a> <dd> Hewlett-Packard HP300/HP400 machines.
1.1 deraadt 129: <dt><a href=i386.html>i386</a> <dd> Your standard run-of-the-mill PC.
130: <dt><a href=mac68k.html>mac68k</a> <dd> Most MC680x0-based Apple Macintosh models.
1.41 deraadt 131: <dt><a href=mvme68k.html>MVME68K</a> <dd> Motorola MVME147/16x/17x 68K VME cards.
132: <dt><a href=pc532.html>PC532</a> <dd> A rare NS32532-based computer.
133: <dt><a href=pmax.html>Pmax</a> <dd> DEC MIPS-based machines.
134: <dt><a href=sparc.html>Sparc</a> <dd> Sun's Sun4 and sun4c models (sun4m soon!).
135: <dt><a href=sun3.html>Sun3</a> <dd> Sun's sun3 models.
136: <dt><a href=vax.html>Vax</a> <dd> DEC's VAX computers.
1.1 deraadt 137: </dl>
1.18 fn 138: </p>
139:
140: <h3><hr><a name=futplat>New platforms under development.</a></h3>
1.1 deraadt 141:
1.18 fn 142: <p>
1.1 deraadt 143: <dl>
1.10 deraadt 144: <dt><a href=mvme88k.html>mvme88k</a> <dd> Motorola MVME18x/19x 88K VME cards
1.25 deraadt 145: <dt><a href=ppc.html>ppc</a> <dd> IBM/Apple/Motorola PowerPC-based machines.
1.1 deraadt 146: </dl>
1.18 fn 147: </p>
1.1 deraadt 148:
149: <p>
150: <h3>Platforms not being developed, but which should be</h3>
1.36 deraadt 151: There is enough free code available to make porting to these
152: machines relatively easy.
1.18 fn 153: </p>
154:
155: <p>
1.1 deraadt 156: <dl>
157: <dt><a href=hppa.html>hppa</a> <dd> Hewlett-Packard PA-RISC HP700/HP800 models.
158: <dt><a href=iris.html>iris</a> <dd> SGI Iris machines.
159: </dl>
1.18 fn 160: </p>
1.1 deraadt 161:
1.26 deraadt 162:
1.49 deraadt 163: <hr><hr>
164: <h3><a name=devel>How we help developers and users.</a></h3>
165:
1.50 deraadt 166: <dl>
167: <h4><a name=ftp>FTP:</a></h4>
1.48 deraadt 168: <dd>This is a list of currently known ftp servers:<p>
169: <ul>
1.18 fn 170:
1.48 deraadt 171: <li><a href=ftp://ftp.openbsd.org/pub/OpenBSD>
172: ftp://ftp.openbsd.org/pub/OpenBSD</a><br>
173: located at Rutgers University, eastern USA.
174: <!-- deraadt@openbsd.org -->
1.18 fn 175:
1.48 deraadt 176: <li><a href=ftp://ftp.ibp.fr/pub/OpenBSD>
177: ftp://ftp.ibp.fr/pub/OpenBSD</a><br>
1.1 deraadt 178: located in France.
179: <!-- ftpmaint@ftp.ibp.fr -->
1.48 deraadt 180:
181: <li><a href=ftp://ftp.univ-evry.fr/pub/system/OpenBSD>
182: ftp://ftp.univ-evry.fr/pub/system/OpenBSD</a><br>
183: located in France.
184: <!-- mirror@ftp.univ-evry.fr -->
185:
1.52 deraadt 186: <li><a href=ftp://hal.heuris.com/pub/OpenBSD>
187: ftp://hal.heuris.com/pub/OpenBSD</a><br>
1.1 deraadt 188: located in University of Missouri-Rolla, mid-western USA.
189: <!-- johns@cs.umr.edu -->
1.48 deraadt 190:
191: <li><a href=ftp://ftp.tut.ac.jp/OpenBSD>
192: ftp://ftp.tut.ac.jp/OpenBSD</a><br>
193: located at Toyohashi University of Technology, Aichi, JAPAN
194: <!-- Keijiro Umehara ume@ftp.tut.ac.jp -->
195:
1.1 deraadt 196: </ul>
1.48 deraadt 197:
198: <p>
199: The file structure of each FTP server is as follows:
1.18 fn 200: </p>
201:
202: <p>
1.48 deraadt 203: <strong>
204: <dl>
205: <dt>OpenBSD/snapshots/
206: <dt>OpenBSD/X11/
207: <dt>OpenBSD/src/
208: </dl>
209: </strong>
1.18 fn 210: </p>
1.1 deraadt 211:
212: <p>
1.48 deraadt 213: If you add a new FTP mirror site, please contact
214: <a href=mailto:deraadt@theos.com> the FTP maintainer</a>.
215: </p>
1.50 deraadt 216: </dl>
1.48 deraadt 217:
1.50 deraadt 218: <dl>
219: <dt><h4><a name=snapshots>BINARY SNAPSHOTS:</a></h4>
1.48 deraadt 220:
221: <p>
1.50 deraadt 222: <dd>Snapshots will be made available from time to time in the following
1.48 deraadt 223: directories. Please do not fetch binaries directly from
224: <string>cvs.openbsd.org</string>, but instead use one of these
225: mirrors.
226: </p>
227: <p>
228: The snapshots are available on each of the FTP servers listed above,
229: typically in the directory <strong>OpenBSD/snapshots</strong>.
230: You should also read the <a href=snapshots.html>general description
231: about OpenBSD snapshots</a>.
1.18 fn 232: </p>
1.1 deraadt 233:
1.50 deraadt 234: </dl>
1.1 deraadt 235: <dl>
1.50 deraadt 236: <dt><h4><a name=maillist>MAILING LISTS:</a></h4>
1.1 deraadt 237: <dd>Some mailing lists are used for the development and use of OpenBSD.
238: In each case, send mail to
239: <a href=mailto:majordomo@OpenBSD.org>majordomo@OpenBSD.org</a>
240: with a message body of "<strong>subscribe mailing-list-name</strong>".
1.18 fn 241:
1.27 deraadt 242: There is a only minimal set of mailing lists intentionally; among
243: other benefits such as more communication it reduces cross-posting.
1.26 deraadt 244: There are no private mailing lists.
245: <p>
1.1 deraadt 246: These are the mailing lists:
247: <dl>
248: <dt><strong>announce</strong>
249: <dd>important announcements. Since this is a low volume list
250: it is excellent for people who just want to follow important events.
251: <dt><strong>tech</strong>
252: <dd>technical discussions
253: <dt><strong>misc</strong>
254: <dd>user questions and answers
255: <dt><strong>source-changes</strong>
256: <dd>automated mailout of CVS source tree changes
1.18 fn 257: </dl>
258:
1.1 deraadt 259: <p>
260: For further assistance, send a message body of "<strong>help</strong>",
261: and you will receive a reply outlining all your options.
1.18 fn 262: </p>
1.1 deraadt 263:
1.26 deraadt 264: </dl>
1.50 deraadt 265: <dl><h4><a name=gnats>BUG TRACKING:</a></h4>
266: <dd>We run GNATS for tracking bugs:
267: <a href=/cgi-bin/wwwgnats.pl>Click here to enter the bug tracking system.</a>
1.26 deraadt 268:
1.39 deraadt 269: </dl>
1.50 deraadt 270: <dl>
271: <dt><h4><a name=sup>SUP:</a></h4>
1.21 deraadt 272: <dd>Sorry, unlike other *BSD projects, the SUP service is not
273: available. We do not believe the SUP service to be a good tool for
274: source code access. But read below for the description of the
275: <a href="#anoncvs"><strong>anoncvs</strong> service!</a>
1.1 deraadt 276:
1.50 deraadt 277: <dt><h4><a name=anoncvs>CVS Access:</a></h4>
1.7 david 278: <dd>CVS is used to manage the OpenBSD source tree. This allows
279: developers to work on a local source tree and commit their changes when
280: ready. Also <strong>anyone</strong> can edit source files on their
281: local machines, and automatically track and merge in any changes made
282: in the OpenBSD CVS repository. Additionally they can easily see the
283: logs of, check out, or "diff" the source files in the OpenBSD source
284: tree.
1.18 fn 285:
1.1 deraadt 286: <p>
1.17 deraadt 287: The latest version of CVS is available at
288: <a href=ftp://ftp.cyclic.com/pub/cvs/>Cyclic</a>.
289: Versions earlier than 1.6 are not recommended, and may not work.
1.18 fn 290: </p>
291:
1.17 deraadt 292: <p>
1.18 fn 293: There are two levels of source tree access:
294: </p>
1.1 deraadt 295:
296: <dl>
297: <dt><strong>Read-write access for developers</strong>
298: <dd>Developers who need to commit changes to the source tree must have
299: an account on the OpenBSD machines. Getting this access will be a
300: natural result of working on the sources with other OpenBSD developers.
1.18 fn 301: </dl>
302: </p>
1.1 deraadt 303: The OpenBSD cvs server is in Calgary, Alberta, Canada.
304: <p>
1.18 fn 305:
306: <dl>
1.21 deraadt 307: <a name="anoncvs">
1.1 deraadt 308: <dt><strong>Read-only access for everyone</strong>
1.5 deraadt 309: <dd>Anyone can access the read-only CVS repositories. These copies
310: of the read-write CVS repository are mirrored often. To use one,
311: set your <strong>CVSROOT</strong> environment variable to one of
312: the following values:
1.1 deraadt 313: <ul>
1.21 deraadt 314: <p>
1.12 deraadt 315: <li><strong>CVSROOT=anoncvs@anoncvs.usa.openbsd.org:/cvs</strong><br>
316: Host also known as <strong>anoncvs.openbsd.org</strong> and
317: <strong>eap.ccrc.wustl.edu</strong>.<br>
1.4 deraadt 318: located at Washington University, St. Louis, mid-west USA.<br>
1.21 deraadt 319: maintained by <a href=mailto:chuck@maria.wustl.edu>Chuck Cranor</a>.<br>
1.5 deraadt 320: protocols: rsh, ssh, ssh port 2022.<br>
1.21 deraadt 321: updated every 4 hours.<br>
322: <p>
1.12 deraadt 323: <li><strong>CVSROOT=anoncvs@anoncvs2.usa.openbsd.org:/cvs</strong><br>
1.52 deraadt 324: Host also known as <strong>hal.heuris.com</strong>.<br>
325: located in MO, mid-west USA.<br>
326: maintained by <a href=mailto:johns@heuris.com>John Stone</a>.<br>
327: protocols: rsh, ssh, ssh port 2022.<br>
1.21 deraadt 328: updated every 12 hours.<br>
329: <p>
330: <li><strong>CVSROOT=anoncvs@anoncvs.uk.openbsd.org:/cvs</strong><br>
331: Host also known as <strong>dumpty.wonderland.org</strong>.<br>
332: located in London, UK.<br>
333: maintained by <a href=mailto:peter@wonderland.org>Peter Galbavy</a>.<br>
334: protocols: rsh, ssh, ssh port 2022.<br>
335: updated every 12 hours.<br>
1.43 deraadt 336: <p>
337: <li><strong>CVSROOT=anoncvs@anoncvs.tw.openbsd.org:/cvs</strong><br>
338: Host also known as <strong>hercules.secc.fju.edu.tw</strong>.<br>
339: located in Taipei, Taiwan.<br>
340: maintained by <a href=mailto:shawn@openbsd.org>Shawn Hsiao</a>.<br>
341: protocols: rsh, ssh, ssh port 2022.<br>
342: updated every 12 hours.<br>
1.1 deraadt 343: </ul>
1.21 deraadt 344: <p>
345: You may want to use `traceroute' to find out which server is nearest you.
1.1 deraadt 346: </dl>
1.18 fn 347: </p>
348:
1.1 deraadt 349: <p>
350: <strong>IMPORTANT NOTE:</strong>
351: There are a few issues relating to cryptographic software that everyone
352: should be aware of:
353: <ul>
1.20 deraadt 354: <li>The OpenBSD sources are from Canada.
355: <a href=http://insight.mcmaster.ca/org/efc/pages/doc/crypto-export.html>It
356: is legal to export crypto software from Canada to the world.</a>
1.21 deraadt 357: <p>
1.1 deraadt 358: <li>However, if you are outside the USA or Canada, you should not
1.5 deraadt 359: fetch the cryptographic sections of the OpenBSD sources from an
360: anoncvs server located in the USA. The files in question are...
1.1 deraadt 361: <ul>
362: <li>src/kerberosIV/*
363: <li>src/lib/libc/crypt/crypt.c
364: <li>src/lib/libc/crypt/morecrypt.c
365: </ul>
366: Because of the USA ITAR munitions list,
367: crypto software may only be exported to Canada from the USA.
1.21 deraadt 368: <p>
369: <li><strong>At the moment most of the anoncvs servers are in the USA.
370: OpenBSD is looking for people willing to run an anoncvs servers in
371: Europe and other places in the world!</strong>
1.1 deraadt 372: </ul>
1.18 fn 373: </p>
374:
1.1 deraadt 375: <p>
1.5 deraadt 376: A sample use of an anoncvs CVS server would be:
1.1 deraadt 377: <pre>
1.12 deraadt 378: % setenv CVSROOT anoncvs@anoncvs.usa.openbsd.org:/cvs
1.1 deraadt 379: % cd /tmp
380: % cvs get sparc
381: [copies the files from the repository to your machine]
382: % cvs log sparc/sparc/locore.s
383: [shows the commit log for the chosen file ]
384: % cvs diff -bc -r1.1 -r1.5 sparc/sparc/locore.s
385: [shows the changes between revisions 1.1 and rev 1.5]
386: </pre>
1.18 fn 387: </p>
388:
389: <p>
1.44 deraadt 390: Here is how someone using anoncvs regularily would update his
391: source tree:
392: <pre>
393: # setenv CVSROOT anoncvs@anoncvs.usa.openbsd.org:/cvs
394: # cd /usr
395: # cvs -q get -PA src
396: </pre>
397: or similarily later on he might try
398: <pre>
399: # cd /usr/src
400: # cvs -q up -PAd
401: </pre>
402: Everytime you ran this it would syncronize your /usr/src tree; it would
1.46 deraadt 403: also not destroy any of your local changes. If you use obj directories
404: (not obj symbolic links) you may wish to append "-I obj" to the cvs
405: command line, this will keep cvs from spitting out a warning about all
406: the obj directories it is going to encounter which are not in the
407: repository.
1.44 deraadt 408: </p>
409:
410: <p>
1.1 deraadt 411: The CVS man page (included with the CVS sources) has much more
1.18 fn 412: information about how CVS can be used.
413: </p>
414:
1.1 deraadt 415: <p>
416: The anoncvs service gives fledgling developers a chance to learn CVS
417: operation and get thoroughly involved in the development process
418: before getting "commit" access -- as a result of showing useful
419: skills and high quality results they will naturally later be given
1.18 fn 420: developer access. As well, people providing patches can create
421: their "diff"s relative to the CVS tree, which will ease integration.
422: </p>
423:
424: <p>
425: The CVS client uses rsh to talk to the CVS server. If some local
426: security measure like a firewall (or imperfect protocol emulators
427: like slirp) prevents you from using rsh, you may be able to use
428: <a href=http://www.cs.hut.fi/ssh>ssh</a>
429: instead (if you are running Solaris, there is a kernel bug which
430: causes problems -- contact
431: <a href=mailto:johns@cs.umr.edu>johns@cs.umr.edu</a>
432: for further details). In this case, one sets the environment
433: variable <strong>CVS_RSH</strong> to point to ssh (typically
434: <strong>/usr/local/bin/ssh</strong>). To reduce the performance
435: hit the anoncvs server would take it is recommended (and requested)
436: that you disable encryption. If your local site prevents you from
437: connecting out to port 22 (which ssh defaults to using) use port 2022.
438: </p>
1.5 deraadt 439:
440: <p>
1.1 deraadt 441: Do not be tempted to turn on compression since CVS already compresses.
442: Use something like the following in your <strong>$HOME/.ssh/config</strong>
443: file.
1.18 fn 444: </p>
1.1 deraadt 445: <pre>
1.12 deraadt 446: Host anoncvs.usa.openbsd.org
1.1 deraadt 447: Cipher none
448: Port 2022
449: </pre>
1.18 fn 450:
451: <p>
452: If you wish to be a new anoncvs mirror site, please contact the anoncvs
453: <a href=mailto:deraadt@theos.com>maintainer</a>.
1.16 deraadt 454: Anoncvs mirrors require about 300MB of disk, and use up to 4MB of swap
1.1 deraadt 455: per anoncvs user (assuming the user does a large operation; while smaller
456: operations use fewer resources, anoncvs still makes much more of an
1.18 fn 457: impact than ftp or sup). Such anoncvs machines should have excellent
458: network connectivity for the area they are expected to serve. A
459: <a href=anoncvs.shar>document</a>
460: which describes the setup of anoncvs servers is available.
461: </p>
1.1 deraadt 462:
463: </dl>
464:
465: <hr>
466: <a href=mailto:www@openbsd.org>www@openbsd.org</a>
1.53 ! deraadt 467: <br><small>$OpenBSD: index.html,v 1.52 1996/07/24 17:06:11 deraadt Exp $</small>
1.18 fn 468:
469: </body>
470: </html>