At 11:36 14/05/01 -0400, Jose Nazario wrote:
>On Mon, 14 May 2001, Ronneil Camara wrote:
>
> > Is it true that NetBSD is better than openbsd and freebsd when it
> > comes to security? I thought, it was openbsd.
>
>while neither netbsd nor freebsd are slouches when it comes to security
>(though freebsd seems to have more core and kernel security advisories
>than netbsd does, just by my anectdotal observations), its openbsd that is
>well known for its security stance. the websites should tell you their
>focuses ...
hmmm' I tend to not follow when it comes to "well-known" things.
I yet to see a proof stating that OpenBSD is more secure than NetBSD.
They are both viable solutions as a FW.
I personally tend to prefer NetBSD, if that matters, but I like'em all:
NetBSD, OpenBSD, FreeBSD and BSD/OS (and when I'll have a Mac,
I'll check Darwin to be full BSD supporter).
So to the question "is NetBSD more secure than OpenBSD", I answer:
"none is more secure. they are both good. you just need to do different
things to set'em up".
>netbsd can be augmented to do a lot of the same basic functionality that
>openbsd can, but it lacks a good number of core components, including a
>high grade packet handling kernel (openbsd is the clear winner in several
>independent tests of openbsd vs *bsd, solaris, linux, etc),
which high grade thing?
> kernel cryptography,
that's what I call marketing. Just because Open is in Canada and that they
merged
crypto in the code since a long time doesn't mean others don't now. I have
both FreeBSD
and NetBSD with the crypto! US control now only s*cks US citizen and
companies...
>and the PRNG within the kernel. openbsd's focus on doing
>everything correctly really brings it that much further ahead of the
>competition.
The focus is their matter, the result is the only thing that I can judge.
And here, I have
to say that the 4 BSD flavours are all as good unless you can prove the
opposite.
>note that netbsd is the parent of openbsd. openbsd excels on x86, SPARC,
>and VAX systems, but runs on several more. netbsd is extremely portable,
>and runs on most everything you can imagine.
and portability is a sign of code sanity...
cheers,
mouss
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
