--On 25 May 2005 16:11 -0400, Will H. Backman wrote:
Any operating system will end up using third party applications
Not necessarily, it is perfectly possible to run e.g. routers, VPN gateways, NFS servers, wireless access-points, ftp and web servers, mail servers, [...] with just the audited software provided in base OpenBSD. But I know what you're saying.
When evaluating a third party application like postfix, you have two security realms. The actual application, and the operating systems that supports it. With OpenBSD, you have a very nice foundation that can help enhance the security of the third party service.
Yes, when you have no alternative but to run software which might be poorly-written, the OS can provide some protection against some types of problem. Though, when concerned about security of a particular piece of software, it's worth questioning what other areas might have not had enough attention and maybe look at the options carefully.
I think that being around the general attitude of things being done 'the right way', well-documented, with a clean approach and attention to detail, helps the user to follow suit. OpenBSD certainly helps there.
