On Thu, Dec 11, 2008 at 7:30 PM, Jeff_1981 <[email protected]> wrote:
> Dear All, > > Please can you indicate me how to run Windows or Linux under OpenBSD ? > Under Linux for example there is possibility to virtualize another OS. > If the other OS is hacked from the web does it compromizes the security of > OpenBSD ? Does QEMU work under OpenBSD? But even if it does, it's probably too slow to use it in production. Also, it might contain bugs and crash, decrease the security of the host or guest, etc. If I were you and decided on using virtualization, I'd go with a proven, mature solution. I don't think QEMU is that mature or that it got enough exposure. > Another question is if I run a server under OpenBSD is this impossible to > hack it from the web ? Nothing is impossible (or impossible is nothing). Even operating systems certified as EAL4+ have been hacked, and some of them have horrible security tracks, despite being certified. No software is bug-free, so forget about the concept of "unbreakable" or "unhackable". It does not exist at all. > The standard install of OpenBSD has no security holes anymore if I > understand, does this mean noone can hack it from the web ? what about an > OpenBSD on which wa have activated one or more services, like mail server / > web server and file sharing for within network (if used as NAS / server as > example ? Being hackable from the Web is just too vague. Your system might have SSH enabled and a poor password for a particular user, such as that a hacker can log in and, from there, launch a local attack against the system (local exploit instead of a remote exploit, like crashing the box), launching a DoS attack, etc. As usual, the security of the system depends on the weakest chain. That's typically the user, or a poor password, or an unpatched system, or a misconfigured system, or an unqualified administrator, or ... :) Thanks a lot for your help. > > Regards, > JF > -- > View this message in context: > http://www.nabble.com/Running-another-OS-under-OpenBSD-tp20961548p20961548.html > Sent from the openbsd user - misc mailing list archive at Nabble.com. > > -- http://www.felipe-alfaro.org/blog/disclaimer/
