Theo de Raadt | 1 Nov 01:15 2006

OpenBSD 4.0 released Nov 1, 2006

- OpenBSD 4.0 RELEASED -------------------------------------------------

Nov 1, 2006.

We are pleased to announce the official release of OpenBSD 4.0.
This is our 20th release on CD-ROM (and 21st via FTP).  We remain
proud of OpenBSD's record of ten years with only a single remote
hole in the default install.  As in our previous releases, 4.0
provides significant improvements, including new features, in nearly
all areas of the system:

- New/extended platforms:
    o OpenBSD/armish.
      Various ARM-based appliances, using the Redboot boot loader, currently
      only supporting the Thecus N2100 and IOData HDL-G.
    o OpenBSD/sparc64.
      UltraSPARC III based machines are now supported!
    o OpenBSD/zaurus.
      Support for the Zaurus SL-C3200. 

- Improved hardware support, including:
    o New msk(4) driver for Marvell/SysKonnect Yukon-2 Gigabit Ethernet.
    o New bnx(4) driver for Broadcom NetXtreme II Gigabit Ethernet.
    o New xge(4) driver for Neterion Xframe/Xframe II 10Gb Ethernet.
    o New rum(4) driver for Ralink Technology 2nd gen USB IEEE
      802.11a/b/g wireless.
    o New acx(4) driver for Texas Instruments ACX100/ACX111
      IEEE 802.11a/b/g wireless.
(Continue reading)

Henning Brauer | 1 Nov 15:43 2006

OpenBGPD 4.0 released Nov 1, 2006

We are pleased to announce the official release of OpenBGPD 4.0.

OpenBGPD is a fairly complete implementation of the Border Gateway 
Protocol, Version 4, as described in RFC 1771. BGP is a protocol used 
by routers to exchange routing information, and is one of the core 
protocols of the Internet.

Highlights include:
* full support for the BGP protocol as defined in RFC 1771
* full support for tcp md5 signatures (RFC 2385)
* full ipsec integration, with both static and dynamic keying supported
* pf and CARP integration
* communities support (RFC 1997)
* route refresh (RFC 2918)
* capabilities advertisement (RFC 3392)
* low memory footprint
* kernel routing table can be coupled and decoupled any time
* easy, straightforward configuration language
* very good performance
* easy to use bgpctl program, to control bgpd at runtime
* complete and accurate manpages

Improvements since OpenBGPD 3.9 include:
* new nexthop selection logic ignoring bgpd routes, helps in complex setups
  with ospfd
* add a "detailed" show rib view to bgpctl, including communities
* allow requesting a route refresh from a peer that supports it
* have bgpd always report back the result of an operation to bgpctl, so the
  operator can spot errors quicker
(Continue reading)

Damien Miller | 7 Nov 19:40 2006

Announce: OpenSSH 4.5 released

OpenSSH 4.5 has just been released. It will be available from the
mirrors listed at shortly.

OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0
implementation and includes sftp client and server support.

Once again, we would like to thank the OpenSSH community for their
continued support of the project, especially those who contributed
code or patches, reported bugs, tested snapshots and purchased
T-shirts or posters.

T-shirt, poster and CD sales directly support the project. Pictures
and more information can be found at: and

For international orders use
and for European orders, use

Changes since OpenSSH 4.4:

This is a bugfix only release. No new features have been added.

Security bugs resolved in this release:

 * Fix a bug in the sshd privilege separation monitor that weakened its
   verification of successful authentication. This bug is not known to
   be exploitable in the absence of additional vulnerabilities.

(Continue reading)

Brad | 14 Nov 00:18 2006

OpenBSD 3.8 End of Life

Due to the release of OpenBSD 4.0, the 3.8-STABLE branch will be
out of regular maintainance. There will be NO MORE fixes commited
to this branch nor new patches.

People relying on 3.8-STABLE (or older releases even) are strongly
advised to upgrade to a more recent release (preferrably 4.0)
as soon as possible.