The latest version of the OpenBSD secure operating system has been released.
A quick review :
OpenBSD 5.7 main feature is USB 3.0 support via the xhci(4) driver.
As usual there is a lot of driver improvement bringing support for new hardware.
On the security side :
- Stricter enforcement of W^X in the kernel
- procsfs has been removed
- Support for loadable kernel modules has been removed
- rand(3) and random(3) return by default non-deterministic numbers
- MD5 has been replaced by SHA512 in several places.
- The new SiHash algorithm is used in hash tables
Among the new features :
- New rcctl utility to control daemons
- fw_update has been rewritten to be faster and smarter
- Fast assembly versions of some libc functions on amd64
- The mbuf layer has been made mpsafe.
- TLS support for syslogd
- inetd uses libevent instead of select
- The new httpd is getting more useful
- OpenSSH 6.8
- OpenSMTPD 5.4.4
- New LibreSSL (OpenSSL fork) with ALPN support
Several daemons have been removed from base :
- Nginx
- Sendmail
- BIND
You can read the release notes here.
