Annotation of www/plus20.html, Revision 1.57
1.18 naddy 1: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
1.1 deraadt 2: <html>
3: <head>
1.57 ! tj 4: <title>OpenBSD 2.0 Changelog</title>
1.42 schwarze 5: <meta name="description" content="OpenBSD 2.0 changes">
1.1 deraadt 6: <meta name="copyright" content="This document copyright 1996 by OpenBSD.">
1.56 deraadt 7: <meta name="viewport" content="width=device-width, initial-scale=1">
8: <link rel="stylesheet" type="text/css" href="openbsd.css">
1.52 sthen 9: <link rel="canonical" href="http://www.openbsd.org/plus20.html">
1.1 deraadt 10: </head>
11:
1.23 david 12: <body bgcolor="#ffffff" text="#000000" link="#23238E">
1.1 deraadt 13:
1.56 deraadt 14: <h2>
15: <a href="index.html">
16: <font color="#0000ff"><i>Open</i></font><font color="#000084">BSD</font></a>
1.57 ! tj 17: <font color="#e00000">2.0 Changelog</font>
! 18: </h2>
1.18 naddy 19: <hr>
1.1 deraadt 20:
21: <p>
22: This is a partial list of the major machine independent changes
1.35 sobrado 23: (i.e., these are the changes people ask about most often). Machine
1.1 deraadt 24: specific changes have also been made, and are sometimes mentioned
1.35 sobrado 25: in the pages for the specific <a href=plat.html>platforms</a> if you
1.1 deraadt 26: are interested in further port-specific details. Many ports
27: have had architecture-specific enhancements relative to NetBSD,
28: but when they do not they certainly have plenty of platform-independent
29: changes, starting with those listed below..
30:
31: <p>
1.18 naddy 32: Note: <font color="#e00000">Problems for which patches exist are marked in red</font>.
1.1 deraadt 33:
34: <p>
1.17 deraadt 35: For changes in other releases, click below:<br>
36: <a href="plus21.html">2.1</a>,
37: <a href="plus22.html">2.2</a>,
38: <a href="plus23.html">2.3</a>,
39: <a href="plus24.html">2.4</a>,
40: <a href="plus25.html">2.5</a>,
41: <a href="plus26.html">2.6</a>,
42: <a href="plus27.html">2.7</a>,
43: <a href="plus28.html">2.8</a>,
44: <a href="plus29.html">2.9</a>,
45: <a href="plus30.html">3.0</a>,
46: <a href="plus31.html">3.1</a>,
1.21 deraadt 47: <a href="plus32.html">3.2</a>,
1.20 deraadt 48: <a href="plus33.html">3.3</a>,
1.22 david 49: <a href="plus34.html">3.4</a>,
1.25 deraadt 50: <a href="plus35.html">3.5</a>,
1.26 miod 51: <a href="plus36.html">3.6</a>,
1.48 deraadt 52: <a href="plus37.html">3.7</a>,
1.34 deraadt 53: <br>
1.28 deraadt 54: <a href="plus38.html">3.8</a>,
1.29 deraadt 55: <a href="plus39.html">3.9</a>,
1.30 deraadt 56: <a href="plus40.html">4.0</a>,
1.31 deraadt 57: <a href="plus41.html">4.1</a>,
1.32 deraadt 58: <a href="plus42.html">4.2</a>,
1.33 deraadt 59: <a href="plus43.html">4.3</a>,
1.34 deraadt 60: <a href="plus44.html">4.4</a>,
1.36 deraadt 61: <a href="plus45.html">4.5</a>,
1.37 deraadt 62: <a href="plus46.html">4.6</a>,
1.38 deraadt 63: <a href="plus47.html">4.7</a>,
1.39 deraadt 64: <a href="plus48.html">4.8</a>,
1.40 deraadt 65: <a href="plus49.html">4.9</a>,
1.41 nick 66: <a href="plus50.html">5.0</a>,
1.42 schwarze 67: <a href="plus51.html">5.1</a>,
1.43 nick 68: <a href="plus52.html">5.2</a>,
1.44 deraadt 69: <a href="plus53.html">5.3</a>,
1.45 deraadt 70: <a href="plus54.html">5.4</a>,
1.46 deraadt 71: <br>
1.48 deraadt 72: <a href="plus55.html">5.5</a>,
1.50 brett 73: <a href="plus56.html">5.6</a>,
1.51 deraadt 74: <a href="plus57.html">5.7</a>,
1.54 deraadt 75: <a href="plus58.html">5.8</a>,
1.55 deraadt 76: <a href="plus59.html">5.9</a>,
1.17 deraadt 77: <a href="plus.html">current</a>.
1.1 deraadt 78: <br>
79:
1.49 deraadt 80: <p>
81: <h3><font color="#0000e0">Changes made between birth and OpenBSD 2.0</font></h3>
82: <p>
83:
1.1 deraadt 84: <ul>
85: <li>CTM is now a supported way of obtaining OpenBSD source code.
86: <li>Added sudo (which is maintained by one of our developers)
87: <li>Working Linux ext2fs.
88: <li>We have completed security reviews of almost all userland programs and libraries except for the gnu stuff (where, based on preliminary inspection there is poor handling of temp files).
89: <li>FreeBSD's adduser(8) command. Also an rmuser(8) command.
90: <li>A 7% reduction in size of static binaries.
91: <li>Compile time option to compile the source tree almost completely dynamic.
92: <li>Almost a hundred more security fixes, including /tmp races because of strncpy.
93: <li>Another kerberos security fix.
94: <li>deal with the SYN bomb problem (denial of service attack) as well known.
95: <li>less version 2.90
96: <li>mopd for networking booting Digital machines
97: <li>latest GNU groff, incorporated in a clean wrapperized form.
98: <li>secure multicast tools against possible security problems.
1.24 deraadt 99: <li>sendmail gecos hole fixed (in a number of ways; other programs in the source tree were also vulnerable).
1.1 deraadt 100: <li>Nice sample files in /etc
101: <li>16 partitions working on sparc and i386 (yipee!)
102: <li>vim is replacing nvi, since nvi does not have a pure BSD license, and vim also works better.
103: <li>And of course... more security related bugfixes... (ie. dump, restore, mt).
1.4 rohee 104: <li>ftp command modified for easily scripted ftp & http downloads.
1.1 deraadt 105: <li>Complete in-tree development for MIPS/Alpha systems (ie. binutils).
106: <li>New routed from SGI.
107: <li>*Hobbit*'s netcat utility. The crackers use it, so should you.
108: <li>Say goodbye to dump, restore, and mt security holes: They are no longer setuid.
109: <li>DDB can now access symbol tables from LKM modules
110: <li>Some serial driver support for /dev/cuaXX devices to support transparent out+dial
111: <li>FreeBSD pipe() system call; quite a bit faster.
112: <li>libgnumalloc is gone; our malloc() is better.
113: <li>Kernel warns if /dev/console does not exist; nice warning for booting with an unpopulated /dev directory.
114: <li>cdio command for using CD audio.
115: <li>Even more security fixes.
116: <li>latest version of perl, and a lndir command.
117: <li>gcc 2.7.2.1 (to get closer to native alpha support ar gcc bugs).
118: <li>vim version 4.5
119: <li>a good start at NETIPX support
120: <li>improved locate command
121: <li>Fixed timeout support in RPC library, and also fixed it to support more than FD_SETSIZE file descriptors.
122: <li>rudimentary support for ISA Plug-and-Play cards
123: <li>`lsof'-style features in fstat.
124: <li>Numerous ftpd improvements and fixes, including multihomed and skey support.
125: <li>ncr53cXXX scsi scripts assembler
126: <li>arc4-based random support in kernel
127: <li>Kerberos is much more silent if not configured
128: <li>scsi subsystem security fix
129: <li>much newer join command (4.4lite2 with other fixes)
130: <li>RCS version 5.7
1.4 rohee 131: <li>added /etc/fbtab support to login & init.
1.1 deraadt 132: <li>partial protection against tcp SYN attacks.
1.4 rohee 133: <li>POSIX & C2 requirement; lose setuid/setgid bits if owner/group changed by chown(). This can be turned off with sysctl.
1.1 deraadt 134: <li>a real adduser program, which can even be used uninteractively.
135: <li>install now supports -C, -p, and -S flags.
136: <li>20 or so more security fixes
137: <li>at -f security fix.
138: <li>generic protection against the bind() takeover problem.
139: <li>new rdisc Router Discovery daemon
140: <li>Numerous FreeBSD userland fixes and improvements incorporated.
141: <li>FreeBSD malloc() that uses mmap() and is able to free unused memory.
142: <li>Fixed long-standing vm swap-leak.
143: <li>_POSIX_SAVED_IDS behaviour with permitted BSD extensions.
144: <li>Newest version of pppd.
145: <li>zlib (non-GPL'd gzip-compatible library)
146: <li>Numerous more security policy and implementation improvements (OpenBSD defaults to installing in a very secure mode)
147: <li>Significantly improved ftp daemon.
148: <li>Protection from the udp spamming and ftp bounce attacks.
149: <li>randomized port allocation in bind(), bindresvport(), and rresvport() -- security via unpredictability.
150: <li>The most secure rdist support anywhere.
151: <li>Fortran in the tree.
152: <li>terminfo database support.
153: <li>Working ATAPI audio support for multiple architectures.
154: <li>Linux ext2fs and BSD4.4 LFS support being worked on.
155: <li>Accepts FreeBSD MD5 passwords in password maps, soon will be able to generate them too
156: <li>Even more security fixes.
1.5 rohee 157: <li>using AT&T awk, gawk is toast
1.1 deraadt 158: <li>pax as tar, gnutar is toast
159: <li>Boot kernels with "-c" to edit/enable/disable device configuration tables
1.4 rohee 160: <li>ATM support (support for one company's sparc & i386 cards available)
1.1 deraadt 161: <li>kernfs extensions
162: <li>select() that can handle any amount of file descriptors.
163: <li>new system calls: rfork(), minherit(), poll().
1.19 david 164: <li>/sbin/init now deals with non-existent ttys, no longer spins gettys madly.
1.1 deraadt 165: <li>ncheck utility for ffs
166: <li>Numerous scsi fixes
167: <li>Some ddb improvements and extensions
168: <li>In-kernel update(8) with an adaptive algorithm
169: <li>/dev/*random -- a device driver providing some kinds of random data
170: <li>Solid YP master, server, and client capabilities.
171: <li>Kerberos and other crypto in the source tree that is exportable
172: <li>Numerous security related fixes
173: <li>new scsi, md5, pkg_* commands
1.12 jsyn 174: <li>ATAPI support (should work on all ISA buses)
1.1 deraadt 175: <li>Some LKM support in the tree.
176: <li>All the pieces needed for cross compilation are in the source tree.
177: <li>Verbatim integration of the GNU tools (using a wrapper Makefile)
1.11 pvalchev 178: <li>nlist() that understands ELF, ECOFF, and a.out, allowing non-a.out ports to use kvm utilities
1.1 deraadt 179: <li>better ELF support
180: <li>ipfilter for filtering dangerous packets and Network Address Translation for IP masquerading.
181: <li>The FreeBSD ports subsystem was integrated and is usable by you!
182: <li>a termlib library which understands termcap.db, needed for new curses.
183: <li>New curses library, including libform, libpanel and libmenu.
1.12 jsyn 184: <li>Many many NetBSD PRs fixed (which NetBSD has not yet fixed)
1.1 deraadt 185: </ul>
186: <p>
187:
188: </body>
189: </html>
![[BACK]](/icons/back.gif){kind=icon}
Return to plus20.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www