| version 1.33, 2016/04/24 20:08:49 |
version 1.34, 2016/07/22 01:04:30 |
|
|
| <!DOCTYPE html> |
<!DOCTYPE html> |
| <html> |
<html lang="en"> |
| <head> |
<head> |
| <meta charset="UTF-8"/> |
<meta charset="UTF-8"/> |
| <title>OpenBSD: Innovations</title> |
<title>OpenBSD: Innovations</title> |
|
|
| as a replacement for the non-free ipf by Darren Reed. |
as a replacement for the non-free ipf by Darren Reed. |
| Imported June 24, 2001 and first released with OpenBSD 3.0. |
Imported June 24, 2001 and first released with OpenBSD 3.0. |
| Now maintained by Henning Brauer. |
Now maintained by Henning Brauer. |
| <li><a href="http://man.openbsd.org/OpenBSD-current/man4/systrace.4">systrace(4)</a>, |
<li><a href="http://man.openbsd.org/OpenBSD-5.9/systrace.4">systrace(4)</a>, |
| <a href="http://man.openbsd.org/OpenBSD-current/man1/systrace.1">systrace(1)</a>: |
<a href="http://man.openbsd.org/OpenBSD-5.9/systrace.1">systrace(1)</a>: |
| Started by Niels Provos. |
Started by Niels Provos. |
| Imported June 4, 2002 and first released with OpenBSD 3.2. |
Imported June 4, 2002 and first released with OpenBSD 3.2. |
| |
Deleted after OpenBSD 5.9 because |
| |
<a href="http://man.openbsd.org/pledge.2">pledge(2)</a> is even better. |
| <li><a href="http://man.openbsd.org/OpenBSD-current/man8/spamd.8">spamd(8)</a>: |
<li><a href="http://man.openbsd.org/OpenBSD-current/man8/spamd.8">spamd(8)</a>: |
| Written by Bob Beck. Imported December 21, 2002 and first released with OpenBSD 3.3. |
Written by Bob Beck. Imported December 21, 2002 and first released with OpenBSD 3.3. |
| <li><a href="http://man.openbsd.org/OpenBSD-current/man1/dc.1">dc(1)</a>: |
<li><a href="http://man.openbsd.org/OpenBSD-current/man1/dc.1">dc(1)</a>: |
|
|
| <li><a href="http://man.openbsd.org/OpenBSD-current/man8/radiusd.8">radiusd(8)</a>: |
<li><a href="http://man.openbsd.org/OpenBSD-current/man8/radiusd.8">radiusd(8)</a>: |
| Written and maintained by YASUOKA Masahiko. |
Written and maintained by YASUOKA Masahiko. |
| Imported July 21, 2015 and first released with OpenBSD 5.8. |
Imported July 21, 2015 and first released with OpenBSD 5.8. |
| |
<li><a href="http://man.openbsd.org/eigrpd.8">eigrpd(8)</a>, |
| |
<a href="http://man.openbsd.org/eigrpctl.8">eigrpctl(8)</a>: |
| |
Written and maintained by Renato Westphal. |
| |
Imported October 2, 2015 and first released with OpenBSD 5.9. |
| <li><a href="http://man.openbsd.org/OpenBSD-current/man8/rebound.8">rebound(8)</a>: |
<li><a href="http://man.openbsd.org/OpenBSD-current/man8/rebound.8">rebound(8)</a>: |
| Written and maintained by Ted Unangst. |
Written and maintained by Ted Unangst. |
| Imported October 15, 2015 and first released with OpenBSD 5.9. |
Imported October 15, 2015 and first released with OpenBSD 5.9. |
|
|
| <a href="http://man.openbsd.org/OpenBSD-current/man8/vmctl.8">vmctl(8)</a>: |
<a href="http://man.openbsd.org/OpenBSD-current/man8/vmctl.8">vmctl(8)</a>: |
| Written and maintained by Mike Larkin and Reyk Floeter. |
Written and maintained by Mike Larkin and Reyk Floeter. |
| Imported November 13, 2015 and first released with OpenBSD 5.9. |
Imported November 13, 2015 and first released with OpenBSD 5.9. |
| |
<li><a href="http://man.openbsd.org/pdisk.8">pdisk(8)</a>: |
| |
Originally written by Eryk Vershen in 1996-1998, |
| |
rewritten and maintained by Kenneth Westerback since January 11, 2016 |
| |
and first released with OpenBSD 5.9. |
| |
<li><a href="http://man.openbsd.org/mknod.8">mknod(8)</a>: |
| |
Original version from Version 6 AT&T UNIX (1975), |
| |
last rewritten by Marc Espie on March 5, 2016 |
| |
and first released with OpenBSD 6.0. |
| |
<li><a href="http://man.openbsd.org/audioctl.1">audioctl(1)</a>: |
| |
Originally written by Lennart Augustsson in 1997, |
| |
rewritten and maintained by Alexandre Ratchov since June 21, 2016 |
| |
and first released with OpenBSD 6.0. |
| |
<li><a href="http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/switchd/">switchd(8)</a>, |
| |
<a href="http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/switchctl/">switchctl(8)</a>: |
| |
Written and maintained by Reyk Floeter. |
| |
Imported July 19, 2016; to be released with OpenBSD 6.1. |
| </ul> |
</ul> |
| |
|
| <h3>Concepts</h3> |
<h3>Concepts</h3> |
|
|
| by Miod Vallat and Theo de Raadt. OpenBSD 3.3 was the first operating |
by Miod Vallat and Theo de Raadt. OpenBSD 3.3 was the first operating |
| system to enable it systemwide by default. |
system to enable it systemwide by default. |
| <li>W^X: First used for sparc, sparc64, alpha, and hppa in OpenBSD 3.3. |
<li>W^X: First used for sparc, sparc64, alpha, and hppa in OpenBSD 3.3. |
| Today, most architectures implement it. |
Strictly enforced by default since OpenBSD 6.0: a program can only |
| |
violate it if the executable is marked with <tt>PT_OPENBSD_WXNEEDED</tt> |
| |
and it is located on a filesystem mounted with the <tt>wxallowed</tt> |
| |
<a href="http://man.openbsd.org/mount.8">mount(8)</a> option. |
| <li>ASLR: OpenBSD 3.4 was the first widely used operating system to |
<li>ASLR: OpenBSD 3.4 was the first widely used operating system to |
| provide it by default. |
provide it by default. |
| <li><a href="http://man.openbsd.org/OpenBSD-current/man1/gcc-local.1">gcc-local(1)</a> |
<li><a href="http://man.openbsd.org/OpenBSD-current/man1/gcc-local.1">gcc-local(1)</a> |
|
|
| it globally by default, on seven hardware platforms. |
it globally by default, on seven hardware platforms. |
| <li>Static-PIE: Position-independent static binaries for /bin, /sbin and ramdisks. |
<li>Static-PIE: Position-independent static binaries for /bin, /sbin and ramdisks. |
| First released with OpenBSD 5.7. |
First released with OpenBSD 5.7. |
| |
<li>SROP (<a href="http://man.openbsd.org/sigreturn.2">sigreturn(2)</a> |
| |
oriented programming) mitigation: Researched by |
| |
<a href="http://www.cs.vu.nl/~herbertb/papers/srop_sp14.pdf">Eric Bosman</a> |
| |
and Herbert Bos in 2014, implemented by Theo de Raadt in May 2016, |
| |
enabled by default since OpenBSD 6.0. |
| |
<li>C library order randomization: |
| |
In <a href="http://man.openbsd.org/rc.8">rc(8)</a>, re-link |
| |
<tt>libc.so</tt> on startup, placing the objects in a random order. |
| |
Theo de Raadt and Robert Peichaer, May 2016, |
| |
enabled by default since OpenBSD 6.0. |
| </ul> |
</ul> |
| |
|
| <h3>Functions</h3> |
<h3>Functions</h3> |
|
|
| Matthew Dempsky, July 13, 2014, OpenBSD 5.6 |
Matthew Dempsky, July 13, 2014, OpenBSD 5.6 |
| <li><a href="http://man.openbsd.org/OpenBSD-current/man2/pledge.2">pledge(2)</a>: |
<li><a href="http://man.openbsd.org/OpenBSD-current/man2/pledge.2">pledge(2)</a>: |
| Theo de Raadt, July 19, 2015, OpenBSD 5.9 |
Theo de Raadt, July 19, 2015, OpenBSD 5.9 |
| |
<li><a href="http://man.openbsd.org/getpwnam_shadow.3">getpwnam_shadow(3)</a>, |
| |
<a href="http://man.openbsd.org/getpwuid_shadow.3">getpwuid_shadow(3)</a>: |
| |
Ted Unangst and Theo de Raadt, November 18, 2015, OpenBSD 5.9 |
| </ul> |
</ul> |
| |
|
| <h3>Projects maintained by OpenBSD developers outside OpenBSD</h3> |
<h3>Projects maintained by OpenBSD developers outside OpenBSD</h3> |
![[BACK]](/icons/back.gif){kind=icon}
Return to innovations.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www