ports
freebsd-src
ports | freebsd-src | |
---|---|---|
14 | 133 | |
475 | 7,490 | |
1.7% | 0.9% | |
10.0 | 10.0 | |
5 days ago | 3 days ago | |
Makefile | C | |
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ports
- Wayland on OpenBSD
-
Firejail: Light, featureful and zero-dependency security sandbox for Linux
I think OpenBSD comes the closest to what you want with its two easy to use syscalls that provide syscall filtering and restricting access to paths:
https://man.openbsd.org/pledge.2
https://man.openbsd.org/unveil.2
A few random examples:
https://github.com/tmux/tmux/blob/c8494dff7b6b9a996866edaf8c...
https://github.com/openbsd/ports/blob/master/www/mozilla-fir...
https://github.com/openbsd/ports/blob/master/www/mozilla-fir...
To get the best isolation you need to patch the source — the application needs to go through initial setup and then drop privileges to the absolute possible minimum. But it's easy to make custom wrappers for third-party applications — the above profiles taken from the OpenBSD ports tree are the proof.
-
Understanding rc.d/
Have you checked the no-ip port: https://github.com/openbsd/ports/blob/master/net/no-ip/pkg/noip2.rc
-
OpenBSD: Shutdown/reboot now require membership of group _shutdown
> https://github.com/openbsd/ports/commit/bf33ea5f3ff390d8cde3...
Now, this is surprising. I randomly clicked on that link and I immediately see that the code and the patch has a bug. It only checks the first 8 characters:
- if (gr != NULL && strncmp(gr->gr_name, "operator", 8) == 0)
-
Does OpenBSD have temperature monitoring and CPU usage issues?
Some people are working around this by using obsdfreqd, some by patching sys/kern/sched_bsd.c (change if (hw_power) to if (0 && hw_power)), some by simply setting to a lower speed (sysctl hw.perfpolicy=manual and hw.setperf=99 might be enough as this disables turbo mode found on some CPUs).
-
How to compile something that requires OpenSSL?
You could also look into a port that has a hard dependency on openssl like: https://github.com/openbsd/ports/tree/master/security/sslscan
-
How I would sell OpenBSD as a salesperson
For me it's the ease of management and good documentation.
For example, during 6.8 to 6.9 upgrade, there was a major postgresql upgrade.
It is mentioned in the doc https://www.openbsd.org/faq/upgrade69.html (see Special packages at the bottom).
You're redirected to the package README with special instructions on how to setup and upgrade: https://github.com/openbsd/ports/blob/master/databases/postg...
Et voilà, everything is explained.
On debian, if I am not careful, I'll do an upgrade and risk breaking something during a db migration (I'm looking at you MySQL upgrades...).
- So I installed OpenBSD 7.0 on my iMac G3 and well no desktop environment will fully install because of missing packages… even compiling CDE was a no go because KSH93 is broken on macppc. At least it’s a step in the right direction as far as getting anything graphical working.
-
OpenBSD Gaming Updates Q2 2022
Godot engine gamecontroller support. This is limited and incomplete, but it's a start. A huge number of indie games made with Godot are released every week; most of which work at least partially with an XBox {360,One} controller. You can follow This Week in Godot if you're interested.
-
Handling argc==0 in the Linux kernel
> OpenBSD has handled this case for some years. I do not know if there was any breakage or fallout from this.
The other thing about OpenBSD is that when they make a change to their OS, they also go through to make sure all the (third-party) ports/packages:
* https://cvsweb.openbsd.org/ports/
* https://github.com/openbsd/ports
do not break. So they're create patches for the software and and submit them upstream.
freebsd-src
- You shouldn't run a BSD on a PC
- Linux Crisis Tools
- What about the vfs.zfs.bclone_enabled sysctl now?
-
Personal FreeBSD PKGBASE Update Server
2023-06-26: https://github.com/freebsd/freebsd-src/commit/ee0aa1ce12b3caea34477a31e9d2111a329e33b9 to main (tagged release/14.0.0).
- What version of ZFS at FreeBSD solves the block cloning issue?
-
Installing FreeBSD 14 Stable on an T480 Laptop w/ an Encrypted Home Directory
It's not yet in FreeBSD base so if you want to test it you'll have to use the patch from the PR: https://github.com/freebsd/freebsd-src/pull/881
-
FreeBSD 14.0 Delivering Great Performance Uplift
Lots of great work by many people. But I bet this guy and his optimizations to the vfs and locking has made a significant impact.
https://github.com/freebsd/freebsd-src/commits?author=mjguzi...
-
ZFS 2.2.1: Block Cloning disabled due to data corruption
and then there were deep concerns about the stability of same, so vfs.zfs.bclone_enabled = 0 was left in-place
https://github.com/freebsd/freebsd-src/commit/068913e4ba3dd9...
-
FreeBSD 14.0-Release Announcement
Well there are some examples:
https://github.com/freebsd/freebsd-src/tree/main/share/examp...
But yeah that pf.conf could be expanded allot, but there are many source to cobble a conf together. My conf is massive but 99.9% commented out so i have my "template" for nearly everything, from mail to web to blacklistd etc.
-
Git cherry-pick and revert use 3-way merge
The BSD version is sort of very recent, for what it's worth -- FreeBSD imported a not fully functional version in 2017 and has seen more work on it in 2022: https://github.com/freebsd/freebsd-src/commits/main/usr.bin/... , but the default version shipped is still GNU diff3: https://man.freebsd.org/cgi/man.cgi?query=diff3&apropos=0&se... .
What are some alternatives?
mlvwm - Macintosh-like Virtual Window Manager (official repo)
podman - Podman: A tool for managing OCI containers and pods.
NsCDE - Modern and functional CDE desktop based on FVWM
musl - unofficial musl mirror git://git.musl-libc.org/musl
xcape - Linux utility to configure modifier keys to act as other keys when pressed and released on their own.
darwin-xnu - Legacy mirror of Darwin Kernel. Replaced by https://github.com/apple-oss-distributions/xnu
dxvk-native - D3D9/11 but it runs natively on Linux!
src - Read-only git conversion of OpenBSD's official CVS src repository. Pull requests not accepted - send diffs to the tech@ mailing list.
OpenBSD-Games-Database - Database of games that run on OpenBSD
ravynos - A BSD-based OS project that aims to provide source and binary compatibility with macOS® and a similar user experience.
Perimeter
coreutils - upstream mirror