WingNews logo WingNews
top | item 7070713

(no title)

jdludlow | 12 years ago 

  > The OpenBSD project uses a lot of electricity for running the
  > development and build machines.  A number of logistical reasons
  > prevents us from moving the machines to another location which might
  > offer space/power for free, so let's not allow the conversation to go
  > that way.
I don't understand this comment. If the choice came down to moving versus shutting down entirely, why is moving an unacceptable answer?

discuss

order

tobiasu|12 years ago

This discussion comes up every time only because some people seem to think OS development is like racking new x86 servers running RHEL.

Many of the machines do not have LOM. They have hardware failures instead. They hang because they get trashed building OpenBSD and ports pretty much 24/7. There is debugging and serial cables going on. Someone needs to push that NMI button and check the LEDs flicker like they should. Reboot them. Constantly update to the latest development version, making them panic quite a bit. Diagnose that. Installation procedure requires console access, monitor adapters, weird keyboards, ... They don't fit in racks properly. There are security concerns. Etc, etc.

It's wrong to think of the machine room as rack space than can be had for cheap somewhere else. It's much more like a lab (with the mad professor living on top, controlling the experiment).

myrandomcomment|12 years ago

While what you say is correct, Theo's stance on this is still a bit unreasonable. A review should be done to see which systems can be moved or supported by the means of remote power off strips and IP console servers. They should be perfectly willing to move that gear if someone offers them the space. All the Sun SPARC, Alpha and Intel most likely falls into this category. Only systems that someone needs to be physically there to access should be left onsite.

I have donated to OpenBSD a number of times because I believe the project is of great value. In all cases where I used a release (for firewalls mostly) I purchased a CD set.

sdkmvx|12 years ago

OpenBSD supports a number of odd and unusual platforms and does builds on them. See http://www.openbsd.org/plat.html. Older hardware can both use a significant amount of electricity and require much more hand-holding than is possible. Virtualization and emulation are not acceptable substitutes because they claim that doing builds on e.g. VAX is one of the best ways to ensure that the code works on VAX as opposed to simply booting on VAX. They also regularly find bugs affecting all platforms that are exacerbated by one particular architecture (think alignment or endianness issues).

nailer|12 years ago

OpenBSD's main value is high security standards.

- Is there a significant amount of people with high security standards and an interest in SGI workstation hardware?

- What about people who have high security standards and Sharp Zaurus hardware?

If these groups aren't as important, as say, ARM and x86 users, perhaps it could be worth dropping some of these platforms?

whyme|12 years ago

I don't see why they're proposing a all or none situation when they could choose to move and in doing so, limit the number of platforms they support. If anyone complains about a specific platform being dropped, well have them pay for the overhead associated with it.

takeda|12 years ago

I've seen a picture posted on Slashdot how they server rack looks like. There are many very old machines, I am sure that at least one reason is fear that they break during transportation.

Found it: http://www.openbsd.org/images/rack2009.jpg

sliverstorm|12 years ago

Why not move the machines, and if the Amiga breaks down and they can't find a replacement, end Amiga support? I mean, that's not a wonderful outcome, but what would you prefer to see given the following options?

a) Shut down OpenBSD

b) Shut down Amiga support in OpenBSD

I mean, is it even a hard choice?

Besides, if there are many developers who like developing for Amiga, surely they would be able to find a replacement?

dmunoz|12 years ago

That image has been present on the lower right corner of the openbsd homepage for a long time. Given the name of the image, I imagine it's been present since at least since 2009, but my (fuzzy) memory wants me to believe there has been an image of a rack there even before then.

osxrand|12 years ago

Am I the only one who want's to organize and clean up those racks? :)

luckydude|12 years ago

Huh, no Sun4/470? I wonder what happened to the one Theo got from me. Too slow I guess but it was a fun machine back in the day.

crististm|12 years ago

The AC instructions note made me smile.

It reminded me of a post-it I left in the company lab with a diagram for how to do proper gigabit cross-overs. I could still find it there five years later after they rearranged the lab several times.

jsz0|12 years ago

There must be more to it than that. Two racks aren't using $20k in electricity.

calpaterson|12 years ago

> why is moving an unacceptable answer

It seems likely that they don't trust anyone else to have physical access to the machines for security reasons. Their threat model probably includes national governments.

tptacek|12 years ago

A somewhat related note about branding.

My first "real" job was in the mid-90's; I was the first technical hire at a small Chicago ISP (EnterAct) that grew into a relatively large ISP (when I left, we were default-free peered to several tier-1 providers and had more POPs than I can name). It was great, and the team that started it --- two Big-5 accounting firm programmers --- was inspiring, particularly when it came to business strategy.

Anyways, very early on, EnterAct managed to maneuver into a reputation for premium customer support. We got that reputation by doing some concrete things differently than our competitors: we staffed an appropriate number of CSRs, trained them to be nice to customers, did a lot of gratuitous tech support for basic computer problems, and were flexible about resolving billing disputes. Sadly, a lot of those things were differentiators at the time. A couple years in and we were essentially able to hang "best customer support" on our list of features, and eventually we became the most popular ISP in Chicago largely based on that.

But something I came to notice pretty quickly: the things we were doing to earn that support reputation stopped being empirical differentiators pretty quickly. Our largest competitor, run by Karl Denninger, did us a continuing series of favors by pissing off their customers. But other large regional ISPs pretty quickly learned not to set fire to their customer base, and, by the end, I think our customer service was pretty much at par for the whole area; we were no longer truly different based on support. The reputation, however, never left.

That observation has stuck with me for my entire career. I think about it all the time. It's banal, I know: "early impressions count a lot", but there's a little more to it than that: you can weaponize an early impression by turning it into your market positioning and having some message discipline.

I left EnterAct for a job in Calgary with a company called Secure Networks (SNI), doing development and security research. For the year prior to leaving EnterAct, I had also been working with the OpenBSD project, mostly by writing all their security advisories, but also doing a bit of part-time security research. SNI operated the world's first commercial vulnerability research team, and had a very close relationship with Theo; we had a full time employee who had essentially led the first OpenBSD security audit. I went drinking with Theo many times, and vividly remember hanging out in his basement with Tim Newsham eating bad pizza and trying to find vulnerabilities in Daniel Bernstein's qmail (we found one that would work if integers were 128 bits, but ironically missed the LP64 bugs that Georgi Guninski found; it was 1997, though).

This is all a long prelude to a simple point, which is that I think OpenBSD's reputation for security works in a very similar way to how EnterAct's reputation worked. OpenBSD started doing something very different than FreeBSD, Linux, and (particularly) NetBSD: they did an OS-wide audit for vulnerabilities, and aggressively fixed apparent bugs whether or not we could demonstrate that they were exploitable. That was a great move. But it was so obviously great that pretty much everyone (with the possible exception of NetBSD) quickly adopted the practice.

Among security research insiders, OpenBSD's reputation became a little bit farcical. Not that OpenBSD was comically insecure --- it wasn't --- but that its reputation so far outstripped its actually differentiation. People found a bunch of vulnerabilities in OpenBSD and laughed as the claim at the top of the OpenBSD changed from "no vulnerabilities" to "no remotely exploitable vulnerabilities in the default install".

And at some point in the last 10 years, didn't OpenBSD's distro servers get owned up?

I'm sure the OpenBSD project would like its threat model to include NSA. But OpenBSD is not a meaningful ally in a contest between you and NSA. NSA wins that fight. OpenBSD's userland was much stronger than FreeBSD's in 1999, but I'm not sure I think their kernel is stronger in 2013, and that's probably what matters more.

Let me wind this bloviation up with a caveat: one thing a reputation for security gets you is a feed of talent that is interested in working on security problems. OpenBSD certainly got that. So for instance, OpenBSD's developers designed and built privilege-separated OpenSSH. There is a lot of good security work that has started inside the OpenBSD project, and I don't mean to talk any of that stuff down. I'd just be careful about taking the project's overall reputation to the bank, especially if you have serious adversaries.

Sorry for hanging this sprawling comment off your (simpler) point; I just don't want the root comment on the thread to be me talking down OpenBSD.

gtaylor|12 years ago

It's possible, but without any kind of answer we are all just guessing.

chongli|12 years ago

Why not just do what Linus Torvalds does and simply trust his hash function? For anyone to tamper with the Linux kernel sources and have him not notice they'd have to generate a SHA-256 collision and somehow get this change past thousands of clones of the repository.

andyjohnson0|12 years ago

Interesting thought. I wonder what precautions are taken w/r/t Linux?

HeyLaughingBoy|12 years ago

Seriously? What's not to understand? He said they had reasons that prevent them from moving and didn't want to discuss it further. Why push it?

Isn't he in a better position to decide what's unacceptable than you are?

gtaylor|12 years ago

If he's asking for money from me, I would like to know why it's not an option. The root of the issue being raised is power/space, so I'd definitely want to know why I'm forking up for something the project could potentially get for free.

It's not a big deal, and I don't expect him to go into detail. He just won't get a cent from me without elaborating, and that's OK. I'm not mad, and I understand he has mis-givings. I just don't think that answer is acceptable enough for me to donate, but that's my subjective opinion (and not everyone else's).

simias|12 years ago

Probably, but then again if he wants my money he better explain why he needs it and how he's going to spend it, doesn't he?

That being said since OpenBSD is all about security maybe that's the reason they don't want to move the servers to some place where they won't be able to monitor physical access to the machines. That's pure speculation though.

orbitur|12 years ago

If I'm donating I would like to know exactly where the money is going, and what options have already been explored. OpenBSD should have referenced, full documentation about these things if they want to maximize donations.

Apparently, there isn't very much documentation/open accounting, and they aren't willing to discuss options to reduce the bill. That doesn't inspire confidence.

gtaylor|12 years ago

Especially if the fate of OpenBSD as it stands is hanging in the balance. Depending on who is offering, this may be because of the uncertainty of whatever arrangement is being proposed. For example, if a smaller company or an individual offers to foot the bill, what happens if the company/individual later has a budget crunch of their own, or decides to cut ties?

Of course, if an IBM/Apple/Google/etc offers space/power, it may be a less risky proposition.

mrweasel|12 years ago

I'm pretty sure that a lot of the older hardware at least require some degree of hands on administration. Rebuilding an testing a new kernel on a VAX with no remote administration features would slow things down. Having stuff easily available makes a lot of sense to me.

kps|12 years ago

Not likely. Everything of that sort has a simple serial console port.