From owner-freebsd-hackers  Sun May 23  1:33: 8 1999
Delivered-To: freebsd-hackers@freebsd.org
Received: from smtp04.wxs.nl (smtp04.wxs.nl [195.121.6.59])
	by hub.freebsd.org (Postfix) with ESMTP id 4B3C114D43
	for <hackers@FreeBSD.ORG>; Sun, 23 May 1999 01:33:05 -0700 (PDT)
	(envelope-from asmodai@wxs.nl)
Received: from daemon.ninth-circle.org ([195.121.197.6]) by smtp04.wxs.nl
          (Netscape Messaging Server 3.61)  with ESMTP id AAA36AA;
          Sun, 23 May 1999 10:33:04 +0200
Received: from daemon.ninth-circle.org (abaddon@daemon [192.168.0.1])
	by daemon.ninth-circle.org (8.9.3/8.9.3) with ESMTP id KAA89231;
	Sun, 23 May 1999 10:33:22 +0200 (CEST)
	(envelope-from asmodai@wxs.nl)
Message-ID: <XFMail.990523103320.asmodai@wxs.nl>
X-Mailer: XFMail 1.3 [p0] on FreeBSD
X-Priority: 3 (Normal)
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
MIME-Version: 1.0
In-Reply-To: <19990523094555.A33370@titan.klemm.gtn.com>
Date: Sun, 23 May 1999 10:33:20 +0200 (CEST)
Organization: Ninth Circle Enterprises
From: Jeroen Ruigrok/Asmodai <asmodai@wxs.nl>
To: Andreas Klemm <andreas@klemm.gtn.com>
Subject: RE: security: what does OpenBSD have, that FreeBSD doesn't have.
Cc: hackers@FreeBSD.ORG
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hi Andreas =)

On 23-May-99 Andreas Klemm wrote:
> Am currently discussing FreeBSD vs. OpenBSD in private e-mail.
> 
> What make OpenBSD so "secure" ? Or can this kind of security be
> reproduced with FreeBSD ports ? I think of tools like:

Ye missed one of the most important things: auditing of the sourcecode.

The OpenBSD team does a lot wrt auditing of the complete sourcetree, but
then the question is: is this valid concern or is this pure paranoia.
OpenBSD does a lot of valid changes but borders (and sometimes crosses thta
border) on paranoia, wrt code.

A lot of the security tools can be get from the ports, but the true
security of a system lies in the eye of the admin. I have known admins whom
I would never trust mission critical security systems to.

HTH,

---
Jeroen Ruigrok van der Werven                asmodai(at)wxs.nl
        The FreeBSD Programmer's Documentation Project 
Network/Security Specialist      <http://home.wxs.nl/~asmodai>
*BSD: Accept no limitations...


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message