OpenBSD Journal
Home : : Add Story : : Archives : : About : : Create Account : : Login :
L2TP/IPSec with OpenBSD and npppd
Contributed by jj on Wed May 9 04:15:41 2012 (GMT)
from the its-a-truck-not-a-series-of-tubes dept.

Maxim Bourmistrov writes in to share his L2TP/IPSEC setup using npppd.

An OpenBSD user since 3.2, I deploy OpenBSD on anything what I want to be secure and stable(yes, even -current is STABLE, as long as you know what you are doing).

This guide is split into two sections. The first and major one is server-side configuration. The second is about what should be done on client-side. I use npppd both at home and at the office. My office setup is a bit more complicated than the one described here.

Read on for the story of how one man conquered his corner of the internet.

[ 8 comments 76d3:36 ago ] (flat) (expanded)

Heads up: New SGI hardware supported!
Contributed by maxime on Thu Apr 26 18:47:47 2012 (GMT)
from the we-build-better-dinosaurs dept.

Miod Vallat (miod@) has just posted a message on the sgi@ mailing list to give the world some news about the OpenBSD SGI port: the IP20, IP22 and IP24 SGI systems (also known as Indy and Indigo, true classics) are now officially supported on -current!

Please see below to read Miod's words:

[ 8 comments 76d3:10 ago ] (flat) (expanded)

Rthreads Hackathon Report Part the First
Contributed by tbert on Wed Apr 25 13:50:53 2012 (GMT)
from the stitch in time dept.

In December of 2005, Ted Unangst (tedu@) commited the first iteration of a new threading library to replace the existing implementation with the message "add userland thread library. incomplete, but functional" This new approach, labelled rthreads, took threading from being a strictly userland to an OS-wide implementation.

A bit over seven years later, Phillip Guenther (@guenther), who had been doing much of the work to complete rthreads, flipped the switch and took what had been an experimental option and made it the default. And two weeks ago, 16 OpenBSD developers gathered in Paris ("Best croissants I've had at any hackathon so far!" says Ken Westerback(krw@)) to perform even more concentrated work on bringing rthreads to a complete state. A few of the hackers have shared their experiences.

[ 11 comments 23d22:32 ago ] (flat) (expanded)

The Story Of The Extra Audio Track: Recording Music With OpenBSD
Contributed by weerd on Sat Mar 31 14:40:01 2012 (GMT)
from the Puffy Burst Into Song dept.

Alexandre Ratchov (ratchov@), OpenBSD developer and composer of one of the extra audio tracks on the newly released audio CD, writes in to tell us how he created the song:

As the "Sonate aux insomniaques" track was just released, I take few minutes to explain how the audio track was produced and where it comes from.

The music is entirely inspired by a poem titled "Sonate aux insomniaques" by Guillaine Dioudonnat. The initial plan, was to work with Guillaine to turn it into a song. But it turned out that the text would add constraints to the rhythm, which would make harder to make the music reflect the universe created by the poem. That's why there are no lyrics.

[ 9 comments 23d22:26 ago ] (flat) (expanded)

It's Official: OpenBSD Helps Me Do Better Science
Contributed by jj on Fri Mar 23 07:58:41 2012 (GMT)
from the sudo-make-me-coffee-in-parallel dept.

Kristaps Dzonsons wrote in with an article about how OpenBSD helps him produce better research. Kristaps writes,

It's no secret that OpenBSD is an excellent research platform. From packages(7) for specialised software to out-of-the-box httpd(8), sshd(8), and so on, it's a no-brainer to pop OpenBSD onto a workstation and just get to work.

In this article, I explore how OpenBSD's clean code and sane defaults recently saved the day. For great science!

[ 1 comment 1852d12:11 ago ] (flat) (expanded)

OpenBSD 5.1 Pre-Orders Started, New Song, Audio CD
Contributed by pitrh on Wed Mar 14 09:22:13 2012 (GMT)
from the bugs-be-gone dept.

As Theo de Raadt (deraadt@) announced in a message to the misc and announce mailing lists, pre-orders for the upcoming OpenBSD 5.1 have opened.

Date: Tue, 13 Mar 2012 20:47:24
From: Theo de Raadt 
Subject: pre-orders activate for OpenBSD 5.1

It is that time again.  I have just activated pre-orders for CDs,
tshirts, and posters for the 5.1 release -- due May 1.

At the same time, I am making available the song that will come out
with the release (hmm, it is still moving out to the ftp mirrors at
the moment, but that is ok).  The song and details of it are linked

And this time there's even more goodies available for you to grab for your collection.

[ 5 comments 1842d1:29 ago ] (flat) (expanded)

EuroBSDCon 2012 Call For Proposals Is Out
Contributed by pitrh on Fri Mar 2 09:06:58 2012 (GMT)
from the Puffies! Daemons! Cats! Insects! Flags! dept.

The organizers of EuroBSDCon 2012 wrote in to tell us that their Call For Proposals is out:

EuroBSDcon is the European technical conference for users and developers on BSD-based systems. The EuroBSDcon 2012 conference will be held in Warsaw, Poland from Thursday 18 October 2012 to Sunday 21 October 2012, with tutorials on Thursday and Friday and talks on Saturday and Sunday.

[ 0 comments ] (flat) (expanded)

BSD-Day 2012: Invitation
Contributed by pitrh on Fri Feb 24 06:16:13 2012 (GMT)
from the deaemons & puffies mingling dept.

Gabor Pali wrote in to announce and invite OpenBSDers to the upcoming BSD-Day in Vienna, Austria. Gabor writes,

Dear All,

I am glad to inform you that we are again organizing a "DanuBSDCon" (aka. BSD-Day). It is going to be held at the UAS Technikum Wien in Vienna, Austria on Saturday May 5, 2012 as part of the Austrian Linuxweeks (Linuxwochen).

We would like to invite everybody — anybody who is just looking for an excuse to make a short trip to Central Europe, spend a nice weekend in Vienna, join us for a beer, talk about her favourite topic, or meet fellow developers from the region (and from other BSD flavours), or accidentally will not be able to make it to Canada :-)

So, please contact me if you are interested!

[ 1 comment 1839d2:51 ago ] (flat) (expanded)

SI6 Networks: OpenBSD Well Ahead Of The Pack In IPv6 Fragment Handling Sanity (and RFC compliance)
Contributed by pitrh on Tue Feb 21 14:09:10 2012 (GMT)
from the they weren't supposed to exist dept.

In a blog post titled IPv6 NIDS evasion and improvements in IPv6 fragmentation/reassembly, security consultants SI6 Networks report on some experiments they conducted recently in order to test IPv6 fragment handling in various general-purpose operating systems.

While the authors did not say so in so many words, the conclusion is that OpenBSD is ahead of the pack in both RFC compliance as well as sane and secure handling of IPv6 fragments.

Read the full article over at the SI6 site: IPv6 NIDS evasion and improvements in IPv6 fragmentation/reassembly

[ 1 comment 1877d9:46 ago ] (flat) (expanded)

Support OpenBSD!

Donate to OpenBSD

Buy OpenBSD products


We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

Older Stuff
Saturday, February 18
08:51 SSH Mastery pre-orders now available, to benefit OpenBSD (2)
Sunday, January 22
18:18 SSH Mastery: A Very Welcome Addition to Any Unix User's Bookshelf (5)
Sunday, January 15
17:33 Using OpenBSD VMs to teach Unix (1)
Friday, January 13
17:09 wiconfig - simplifies the configuration of wireless interfaces (14)
Saturday, November 12
17:19 OpenBSD reaches 5.0! (2)
12:23 Reports from EuroBSDcon 2011 (0)
Thursday, October 27
10:09 A Week of OpenBSD Hacking In Slovenia: Developers Report From s2k11 (Part 3) (9)
Tuesday, October 18
06:00 Slovenian interview with Theo (12)
Monday, October 17
06:00 A Week of OpenBSD Hacking In Slovenia: Developers Report From s2k11 (Part 2) (2)

Older Stuff...
Yesterday's Edition...

OpenBSD Errata

OpenBSD Resources

Users wishing RSS/RDF summary files of OpenBSD Journal, can retrieve: [xml]

[ Home | Add Story | Archives | Polls | About ]

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original with Jose's and Jim's kind permission. Some icons from used with permission from Kathleen. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. Search engine is ht://Dig. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]