Sure to elicit some comment, this came from the Debian weekly news. Cory
Debian/OpenBSD ceased. Andreas Schuldei [40]announced that he is discontinuing the effort to combine OpenBSD and Debian. He found out that there are several indications that security in OpenBSD is mostly at the same level as it is in Debian. Since the reason to work on this port was primarily to provide a more secure environment for Debian users this port doesn't seem to be worthwhile anymore. 40. http://lists.debian.org/debian-bsd-0210/msg00063.html From: Andreas Schuldei <[EMAIL PROTECTED]> There are several indications that openbsd's security is more or less up to the level what can be achived with todays debian gnu/linux. The kernel code seems to have severe race conditions and the userspace seems to be bitten by a compareable number of security incidents as e.g. a stabel debian with a correspondig software base. Since my reason for this port is primary to provide a more secure environment for debian users with the same feel, right now this port seems not to be worthwhile. OpenBSD seems to make efforts to change to elf binary format some time in the future. When this happend and the audit efforts show further results i will reevaluate the situation. Everyone who wants to carry on with this port is welcome to take over. ---------- From: Andreas Schuldei <[EMAIL PROTECTED]> * Andreas Schuldei ([EMAIL PROTECTED]) [021022 23:58]: > There are several indications that openbsd's security is more or > less up to the level what can be achived with todays debian > gnu/linux. > > The kernel code seems to have severe race conditions and the > userspace seems to be bitten by a compareable number of security > incidents as e.g. a stabel debian with a correspondig software > base. When i read this paragraph right after the first i laught loud. Fact is i am not aware of any races in the linux kernel. My point was that there was not so much to win securitywise with this port. _______________________________________________ Eug-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
