snip
indent
The author of the linked article kind of lost me at as soon as a
service is enabled or software from the ports tree is installed.
Well SHEEIII, who knew. I better run out right now and replace
all my firewalls with iLinux.
I had no idea that it was up to me to
On 01/23/2010 01:02 AM, Steve Shockley wrote:
On 1/22/2010 12:13 PM, Dan Harnett wrote
Nowhere in the article is proof provided that OpenBSD is insecure.
Sure there is; OpenBSD uses Sendmail and BIND, and they've had lots of
vulnerabilities!
http://www.openbsd.org/faq/faq1.html#HowAbout
It doesn't and I'll argue all day that it won't help you a bit.
Here is an example:
1. running system with OMGACL
2. pkg_add -ui
3. couple of days later at 3am bz got come to the datacenter because
the app bombed
4. oh, the acl terminated it; adjust
5. repeat 3 - 4 until it works
6. repeat
On Fri, 22 Jan 2010 07:22 -0600, Marco Peereboom sl...@peereboom.us wrote:
It doesn't and I'll argue all day that it won't help you a bit.
Here is an example:
1. running system with OMGACL
2. pkg_add -ui
3. couple of days later at 3am bz got come to the datacenter because
the app
On Fri, Jan 22, 2010 at 07:22:58AM -0600, Marco Peereboom wrote:
It doesn't and I'll argue all day that it won't help you a bit.
I couldn't agree more.
BTW, microsoft implemented every single ACL type mechanism the NSA ever
made public. Tell me again how well it worked for them.
More
On Fri, Jan 22, 2010 at 12:13:38PM -0500, Dan Harnett wrote:
On Fri, Jan 22, 2010 at 07:22:58AM -0600, Marco Peereboom wrote:
It doesn't and I'll argue all day that it won't help you a bit.
I couldn't agree more.
BTW, microsoft implemented every single ACL type mechanism the NSA ever
On Fri, Jan 22, 2010 at 10:56:14AM +0800, Zamri Besar wrote:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
-zamri-
Sometimes the add-on security enhancements directly weaken system
security:
http://www.milw0rm.com/exploits/9191
On Fri, Jan 22, 2010 at 12:13:38PM -0500, Dan Harnett wrote:
I also do not understand why strlcpy and strlcat are causing the author
so much grief. This person didn't seem to know they existed before
writing the article. I work in an ISP environment and it has caused
zero issues to both
On Thu, Jan 21, 2010 at 8:56 PM, Zamri Besar zam4e...@gmail.com wrote:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
-zamri-
That's a great article...I mean, I'd rather go get shots the day after
hiring a hooker instead of wearing a
What a laugh.
I hope all of you see that this article has to be a hoax.
Oh well, I certainly learned a lot from this.
find / -name .* -print /etc/changelist
chmod -R /
I feel so much safer!
--
A human being should be able to change a diaper, plan an invasion,
butcher a hog, conn a
2010/1/22 Zamri Besar zam4e...@gmail.com:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
The OpenBSD approach to security is primarily focused on writing quality
code, with the aim being to eliminate vulnerabilities in source code. To this
ropers wrote:
2010/1/22 Zamri Besar zam4e...@gmail.com:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
So... the author prefers shoddy, buggy, non-quality code as long as it
provides extra access control granularity.
Yeah...
I
On 1/22/2010 12:13 PM, Dan Harnett wrote
Nowhere in the article is proof provided that OpenBSD is insecure.
Sure there is; OpenBSD uses Sendmail and BIND, and they've had lots of
vulnerabilities!
On Fri, Jan 22, 2010 at 1:56 PM, Zamri Besar zam4e...@gmail.com wrote:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
-zamri-
An interesting read - but seems to just be ACLs, ACLs, ACLs and that's
about it. And this person's source on
On Fri, 22 Jan 2010 10:56 +0800, Zamri Besar zam4e...@gmail.com
wrote:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
I know, I know a troll, but I'll bite.
This is laughable because of his examples and lack of actual good ones.
OpenVMS
On Thursday 21 January 2010 21:56:14 Zamri Besar wrote:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
-zamri-
This should have been posted to advocacy, not misc. Actually, it doesn't
truly belong there, either. There seems to be enough
On Fri, Jan 22, 2010 at 02:47:27PM +1100, Aaron Mason wrote:
On Fri, Jan 22, 2010 at 1:56 PM, Zamri Besar zam4e...@gmail.com wrote:
The insecurity of OpenBSD
http://allthatiswrong.wordpress.com/2010/01/20/the-insecurity-of-openbsd/
-zamri-
An interesting read - but seems to just be
17 matches
Mail list logo