From owner-freebsd-stable  Sat Jul 21 12:50:35 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from mail2.mediadesign.nl (md2.mediadesign.nl [212.19.205.67])
	by hub.freebsd.org (Postfix) with SMTP id DC11A37B408
	for <freebsd-stable@FreeBSD.org>; Sat, 21 Jul 2001 12:50:31 -0700 (PDT)
	(envelope-from alson@mediadesign.nl)
Received: (qmail 9473 invoked by uid 1002); 21 Jul 2001 19:50:26 -0000
Date: Sat, 21 Jul 2001 21:50:26 +0200
From: Alson van der Meulen <alm@flutnet.org>
To: freebsd-stable@FreeBSD.org
Subject: Re: Is FreeBSD more secure than Windows NT or Windows 2000?
Message-ID: <20010721215026.B2446@md2.mediadesign.nl>
Mail-Followup-To: freebsd-stable@FreeBSD.org
References: <Pine.LNX.4.33.0107211527090.7405-100000@quasar.phys.vt.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Pine.LNX.4.33.0107211527090.7405-100000@quasar.phys.vt.edu>
User-Agent: Mutt/1.3.18i
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

On Sat, Jul 21, 2001 at 03:45:05PM -0400, Sung Nae Cho wrote:
> Hi,
> 
> One thing that makes me uncomfortable with both Linux and FreeBSD is that
> unlike Windows NT, both UNIX clones seem to be less secure for a desktop
> use. ( ** Note clones doesn't mean it's any less better than UNIX, it just
> means, it's not officially considered UNIX by OPEN-GROUP ** )  I've used
> Windows NT 4.0 since '98, Linux since '99, FreeBSD since '00 and finally
> gone FreeBSD only on my laptop.  However, unlike, Windows NT 4.0, other
> people can get access to my confidential files!  How?  Well, they can just
> reinstall the FreeBSD without deleting my $HOME directory and as a root,
> they can access all my files!  This is a great concern when my laptop gets
> stolen!  Windows NT is very secure in that matter.  Simply reinstalling
> Windows NT will not let you read someone else's file.  Also, it won't let
> you reinstall Windows NT without verifying that you're the right
> administrator!  During the reinstall, it asks for your root passwd.  If
> the passwd doesn't match, it won't let you reinstall unless you're willing
> to reinstall from scratch (reformat or erase everything before going on to
> installation procedure).  Now I think that's being secure all the way.  Is
> there anyway I can do that with FreeBSD?  For example, attaching signature
> to all my files etc.
Use gnupg to encrypt the files, or look for some crypto filesystem (don't
know if it's available for FreeBSD)

You can read NTFS filesystems even easier by using an NTFS driver for
linux or dos, these drivers just ignore the file permissions.

The only way to secure sensitive data is using encryption, encrypted
swap might be desirable then too, to make sure they can't read the data
from your swap partition.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message