Theo de Raadt will (probably) be speaking about how user expectations for security out of the box have changed over the last years, and will hopefully be much less jet-lagged than the last time he went to Europe.
Theo de Raadt held a BOF ("Birds Of a Feather", ie. a meeting of people interested in the same thing) about OpenBSD.
At this conference, the OpenBSD team sold 100 or so 2.1 release CDROMs.
Since this is the primary security conference, many speakers said very good things about our stance on security... particularily people like the L0phT.
The terminal room consisted primarily of Decstation running OpenBSD 2.1. Once again, the L0phT people had very good things to say about our security.
Niels held a talk about the problems of unencrypted TCP/IP connections, offering IPSEC as possible solution.
At this conference, Theo presented an evening talk which basically turned into a list of fixed security problems and cautionary tales about subsystems in which future problems may be encountered (slides available).
The terminal room PC's ran OpenBSD 2.2.
At Usenix 1998 there was a strong OpenBSD presence both in the Freenix and normal tracks. Theo did a general talk about what the OpenBSD project offers. Angelos held a panel about IPSEC (which is quite an OpenBSD topic since IPSEC development at that time was so much further ahead in OpenBSD than anywhere else).
The terminal room PC's ran OpenBSD 2.3. We sold many CDROMs. The first style of OpenBSD t-shirt also sold quite well.
Theo de Raadt presented a talk entitled "Auditing software for security" about the OpenBSD security auditing team's process and the lessons the team learned. The talk concentrated on how our process fixes bugs -- not just holes -- since one never knows when 5 bugs will act together to become a hole.
The router to the outside world was an OpenBSD 2.3 box. It was involved
in a "capture the flag" competition in which an entire room of crackers
attempted to break into it and machines running other operating systems.
The OpenBSD box was not broken into.
Almost 100 OpenBSD 2.3 CDROMs were sold (we ran out again). The primates
at monkey.org brought 2.3 "wire-frame"
OpenBSD t-shirts to the conference and sold almost 200 of them. The
proceeds from the sales were donated to the OpenBSD project.
OpenBSD team members have been on-hand to discuss OpenBSD's role among the other free software projects available as well as sell CDs and t-shirts.
Theo de Raadt spoke in a panel about Open/Free software with Eric Raymond and others.
An extensive after-action report was sent to advocacy@openbsd.org. While sales of shirts and CDROM's left much to be desired, we did have good opportunities to further project visibility and highlight its strengths.
At this conference, entirely devoted to IP, Niklas Hallqvist from the OpenBSD team held a talk on the IKE (a.k.a ISAKMP/Oakley) key management protocol and experiences from the implementation of isakmpd, an IKE implementation funded by Ericsson Radio Systems and developed primarily for the OpenBSD IPSEC stack.
Theo de Raadt gave a talk about security auditing, sponsored by CORE SDI S.A., an Argentinian security auditing company who strongly believes in the future of OpenBSD. (Slides are available).
More than 10 OpenBSD team members showed up. By far, OpenBSD was the largest representative group from free software at the conference.
Usenix donated us a table in the vendor area where we sold 2.4 CDROMs, 2.3 "wire-frame" t-shirts, and the new 2.4 embroidered "Because security matters..." t-shirts, polos, and sweaters.
An OpenBSD BOF was held one evening, led by Theo de Raadt.
The terminal room ran OpenBSD 2.4 on 45 machines. Obviously people's trust in OpenBSD has increased, since numerous people who have not used the Usenix terminal room (due to security problems that have come from such use in the past) before were seen using the machines.
A PalmPilot schedule loader was at the membership booth, powered by OpenBSD.
A couple of OpenBSD team members were there and some of the swedish user society as well. OpenBSD CDs were sold at a booth and at the end of a security talk, the project got applauded for its continuous strive of auditing security sensitive parts of the system.
Some OpenBSD team members were at this conference, in particular our IPSEC developers.
Some OpenBSD team members were at this conference selling OpenBSD 2.5 CDs, OpenBSE T-shirts, as well as Blowfish T-shirts, which sold out very quickly at a table donated by the Expo. OpenBSD was the only BSD represented at the vendor exposition, and we had good chance to present a secure alternative to Linux.
Some OpenBSD developers presented papers in the Freenix track.
The USENIX Association
provided The OpenBSD Project with a grant to underwrite the production
of CDs of OpenBSD 2.5. (We distributed the
release for free to attendees of the USENIX Annual Conference in
June.)
Usenix team members were involved in the authoring and
presentation of 4 OpenBSD-related papers:`
At this conference, the OpenBSD team sold 100 or so 2.5 release CDROMs
and a TON of tshirts.
A number of OpenBSD team members from all over the world were at this
conference. In addition to attending the IPsec and DNS working groups (among
others) we did IPsec/IKE interoperability testing together with
the japanese KAME project. Also, Angelos D. Keromytis did a presentation on
his work with keynote and isakmpd in OpenBSD.
Many OpenBSD people from the east coast showed up and sold CDs and
shirts. It was pretty clear from discussions that many people were
very aware of OpenBSD, and that OpenBSD was being used in very
significant security roles.
Theo de Raadt gave two talks on "quality of software" related issues
and participated on a panel about how open source projects are
coordinated.
Theo de Raadt spoke at 10:00am on the 9th. Other OpenBSD
developers from the east coast attended as well.
Niklas Hallqvist spoke on the topic of how to use
IPsec for securing communications.
Håkan Olsson & Jakob Schlyter spoke at the DNSSEC session on the 27th.
Bob Beck presented a paper about the U of A's nifty OpenBSD based
solution to the problem of public Ethernet jacks in the technical sessions
starting at 11:00 AM on the 11th.
Wes Sonnenreich and Tom Yates presented a tutorial on building
firewalls with OpenBSD.
BoF of open source BSDs took place.
2.6 release CDROMs and t-shirts were sold.
Emphatic interest has been shown by representatives from press, international
government and military institutions.
Representatives from OpenBSD, BSDi, and FreeBSD hosted a
"Birds Of a Feather" session at the New York LinuxWorld Expo.
About 15 OpenBSD team members attented.
OpenBSD CDs and shirts were sold at a booth donated by the conference.
Louis Bertrand represented OpenBSD at a BSD BOF with FreeBSD/BDSI,
NetBSD and Apple (Darwin is BSD-derived). The BOF was attended by about
75 people, many of whom were new to *BSD. It was an opportunity to
explore future cooperation among the various BSD groups and companies.
Theo de Raadt spoke about why programmers keep making the same stupid mistakes,
what types of efforts might improve this, and how this all relates to auditing
efforts. Rain Forest Puppy, Ron Gula (Network Security Wizards), Ken Williams (E&Y),
March Roesch (snort/HiverWorld), and Fyodor (nmap) were among the other speakers
at this event. (On a personal note; at this conference Theo realized that three
leading Network Intrusion Detection System companies use OpenBSD as their
base operating system: Hiverworld, Network Security Wizards, and NFR).
Theo de Raadt participated in a panel discussion about the pros and cons
to using Open Source software in various business environments. The local
users also handed out OpenSSH and OpenBSD posters, and were absolutely
surprised and amazed by the number of Calgary companies quietly using
OpenBSD.
Sam Smith gave a rundown of features coming in OpenBSD 2.7 and
OpenSSH 2.1.
Repeating the tradition of a similar meeting held last year, many
OpenBSD developers from around the world converged on Calgary
for a weekend long hack-and-drink session. As before, the event
was invitation only. Many significant things got done, including
ipv6 + ipsec running over hardware crypto devices.
Almost 20 OpenBSD developers showed up for the 25th anniversary of Usenix.
We had a vendor booth, as well as a number of papers being presented.
Conference attendees had the opportunity to test drive the new release,
OpenBSD 2.7, on the 30 workstations in the terminal room. For the first
time ever, the terminal room and wavelan networks also had a IPv6 connection,
and some users even discovered so by themselves over.
Theo also held a BoF on the Wednesday evening, after which the developers
had almost too much singing in foreign languages with the help of helium.
There was a BSD booth where we had the first OpenBSD 2.7 CDs for Europe
and the new blue stitchwork Blowfish Polo shirt.
Ian Darwin presented a tutorial on
Secure Internet Servers/Firewalls with OpenBSD, and bravely
manned the OpenBSD booth for the remainder of the show.
Kjell Wooding took part in a panel discussion on the Future of the BSDs,
and spoke about
Secure By Default. Both sessions were well attended, and at least
one Linux sysadmin was seen racing for a keyboard, scared look in his eyes,
after the security talk.
Ian's tutorial is available at:
Kjell Wooding (our ipf maintainer), James Phillips from the
OpenBSD Journal, and Theo de Raadt
had a table and were selling OpenBSD CDROMs, tshirts, and posters on
Friday and Saturday. Hordes of people visited our table and we at the
end we were completely sold out of CDROMS and shirts (allowing us to go
check out Hoover Dam's hardhat tour on Sunday and leave the madness behind).
We were completely amazed at the people who stopped by our table, to say
that they were relying on OpenBSD.
Some OpenBSD developers will be there, at one paper was presented:
Usenix 1999,
by Charles D. Cranor,
Theo de Raadt.
paper and
slides.
Usenix 1999,
by Niels Provos,
David Mazieres.
paper and
slides.
Usenix 1999,
by Theo de Raadt,
Niklas Hallqvist,
Artur Grabowski,
Angelos D. Keromytis,
Niels Provos.
paper and
slides.
Usenix 1999,
by Todd C. Miller,
Theo de Raadt.
paper and
slides.
A dozen vendors, among them OpenBSD, tested more than 15
IPsec
products, both gateways and hosts, for interoperability. The tests
were successful as far as general IPsec and pre-shared key
authentication went, OpenBSD interoperated with everyone, but due to
time constraints we never got to test the certificate support
appropriately. The results were presented later that fall at a
conference in Stockholm.
There were many other OpenBSD
people at this conference as well, as well as a booth selling CDROMs and
t-shirts. His paper is available at:
LISA 1999,
by Bob Beck.
paper and
slides.
There were installation CD-ROMs, free food, and even free Daemon Horns!
As well, Theo de Raadt gave an invited talk on Wednesday morning
about why software quality/security suffers, and what we can do to
improve it.
Usenix 2000
by Angelos D. Keromytis,
Niklas Hallqvist.
paper and
slides.
Usenix 2000
by Angelos D. Keromytis,
Jason L. Wright.
paper and
slides.
Usenix 2000
by Craig Metz.
Christian Weisgerber gave a
talk
on BSD.
Usenix Security 2000
by Niels Provos.
paper.