On Tue, Oct 29, 2002 at 11:31:38AM -0800, Cory Petkovsek wrote: > Sure to elicit some comment, this came from the Debian weekly news. > Cory
What I see as more valid reason - OpenBSD users hate package managers. 10 tarballs and a single file kernel, installable from a single regular floppy. I had to dl a 30MB ISO just to do a netinstall of Debian, and the ISO didn't even have basedebs.tar on it! Not to mention the shock of configuration files being updated by scripts. The horror. > discontinuing the effort to combine OpenBSD and Debian. He found out > that there are several indications that security in OpenBSD is mostly > at the same level as it is in Debian. Since the reason to work on this > port was primarily to provide a more secure environment for Debian users > this port doesn't seem to be worthwhile anymore. Well, as long as Debian continues to import OpenBSD and OpenWall software, it's probably not. > From: Andreas Schuldei <[EMAIL PROTECTED]> > There are several indications that openbsd's security is more or > less up to the level what can be achived with todays debian > gnu/linux. Can be achieved != by default. > The kernel code seems to have severe race conditions and the > userspace seems to be bitten by a compareable number of security > incidents as e.g. a stabel debian with a correspondig software > base. Software will never be bug free. A lot of the recent effort to make OpenBSD more secure has been to reduce the potential effect of bugs. Privilege separation in sshd, daemons and X dropping root privileges after they initialize hardware and low ports and running as shell-less users. > Since my reason for this port is primary to provide a more secure > environment for debian users with the same feel, right now this > port seems not to be worthwhile. I wouldn't expect it to be very popular. Most OpenBSD users also dislike the GPL. > OpenBSD seems to make efforts to change to elf binary format some > time in the future. When this happend and the audit efforts show > further results i will reevaluate the situation. Oh, I thought Debian stable shipped with ancient software because they had to worry about multiple architectures. OpenBSD elf exists, just not on i386 (prolly will in the next month or so, tho). The biggest difference between OpenBSD and Debian is in the attitude. You can't bridge that gap with a "port". -- <[EMAIL PROTECTED]> _______________________________________________ Eug-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
