On Wed, 9 Jan 2008 23:03:29 +0200 Nikns Siankin <[EMAIL PROTECTED]> wrote:
> Facts about OpenBSD: > > # Stable release cycle. > If you want to run latest bugfree ClamAV or FireFox - upgrade to > CURRENT! But don't forget to buy release CD's!!! if you do not like to use CURRENT, send a patch which backports these versions to stable. you are listed as maintainer for some ports, means you should know how things work. > # Secure By Default. > OpenBSD uses broken WEP for securing WiFi networks. > Has no WPA/WPA2 support. wpa is not much better than wep. useful alternative: ipsec, another alternative: secure your wlan with pf/authpf. > # Do not let serious problems sit unsolved. > OpenBSD doesn't need MAC because it has their own security flawed > systrace. i do not get the point. seriously, have you ever used systrace? > # Use of Cryptography. > OpenBSD uses file-backed encryption (svnd) which is very suited > for Full-disk-encryption. NOT. wrong. i use it on a whole raid 1 disk for example, no problems here. $ df -h Filesystem Size Used Avail Capacity Mounted on [...] /dev/svnd0c 411G 249G 141G 64% /media > # Full Disclosure. > OpenBSD at first denies remote exploitable flaws. > DoS flaws gets marked as reliability not security issues. what's the problem? > # Easy maintainable. > OpenBSD distributes source patches to make your farm of > Pentium2 firewalls updated easly. if you own such a cluster (i doubt that) you would compile the patch only once and then distriubute the binaries. > # Secure Distribution. > The most secure operation system gets distributed on FTP servers > as unsigned binaries. buy the cd or use cvs+ssh if you do not like unsigned ftp binaries. > Disclaimer: Like it or not. I'm OpenBSD user for 4 years. > Shit on my head - shit on all OpenBSD supporters. why did you start such a flame-mail? it makes you look like a whiner. if you do not like openbsd, use something else. regards, joerg
