>OpenBSD also supports numerous crypto cards and the crypto >instructions on VIA CPUs. And OpenBSD i sn't locked into 10 year old >technology. New security features are being developed and integrated a >ll the time.
In Solaris 10 we've added the kernel crypto framework which allows us to plug in crypto hardware providers without making changes to all consumers. It is true that we do not (yet) provide modules for the VIA boards (But since I recently acquired one, that might change) I'm not sure what you mean by being locked into 10 year old technology? >> Solaris also supports many of the same security features that OpenBSD >> touts, but takes them to the next level. Zones is not just about >> making one server into many. Each zone is a walled off area that is >> independent of the others, it takes chroot jails to a whole new level. > >But services aren't zoned by default. OpenBSD privseps and jails as much as >possible by default. Solaris does run quite a few daemons with as few privileges as possible and also separates the privileged and unpriivlege part from sshd. Casper _______________________________________________ opensolaris-discuss mailing list [email protected]
