From owner-freebsd-newbies@FreeBSD.ORG Tue Jul 20 22:08:20 2004 Return-Path: Delivered-To: freebsd-newbies@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 30D6E16A4CE for ; Tue, 20 Jul 2004 22:08:20 +0000 (GMT) Received: from ns1.tiadon.com (SMTP.tiadon.com [69.27.132.161]) by mx1.FreeBSD.org (Postfix) with ESMTP id BC7DA43D46 for ; Tue, 20 Jul 2004 22:08:19 +0000 (GMT) (envelope-from kdk@daleco.biz) Received: from [69.27.131.0] ([69.27.131.0]) by ns1.tiadon.com with Microsoft SMTPSVC(6.0.3790.0); Tue, 20 Jul 2004 17:10:01 -0500 Message-ID: <40FD97D0.9080806@daleco.biz> Date: Tue, 20 Jul 2004 17:08:16 -0500 From: "Kevin D. Kinsey, DaleCo, S.P." User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7) Gecko/20040712 X-Accept-Language: en-us, en MIME-Version: 1.0 To: bsd hack References: <20040720213002.95461.qmail@web21527.mail.yahoo.com> In-Reply-To: <20040720213002.95461.qmail@web21527.mail.yahoo.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 20 Jul 2004 22:10:02.0203 (UTC) FILETIME=[4DCB92B0:01C46EA6] cc: freebsd-newbies@freebsd.org Subject: Re: FreeBSD Security features X-BeenThere: freebsd-newbies@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Gathering place for new users List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jul 2004 22:08:20 -0000 bsd hack wrote: >Hi, > I have been trying to understand the security features of FreeBSD. I have read the FreeBSD handbook... I have seen that FreeBSD is mentioned as the most secure OS to use. I dont understand why it's security features are considered to be better than that of the other OS's. I'm kind of new to this and haven't done much research on this. > >I'm basically trying to understand the security features of FreeBSD... Can somebody give me pointers to a few useful links which will help me in understanding the security features in different OS's and how FreeBSD differs. > >-HKR > > Actually, among the BSD's, OpenBSD has the reputation of being "most secure." And, as far as security goes, it's a matter of how the machine and operating system are configured, and monitored. IOW, a paranoid sysadmin goes a long way toward making a system, any system, secure. Also, remember that in reality, the most secure system is one that's not connected to any other system inside something like a bank vault. However, that's not very usable. With FreeBSD, one of the nice things is that you don't have to run any services that are open to the outside world if you don't have to, (compare that to some Windows issues), and the firewall is fully configurable, given some knowledge of the command syntax (try filtering outbound traffic with WinXP's builtin firewall....) Unix-like operating systems had filesystem permissions and uid's before Windows and the like came into existence. Maybe that's part of what someone was thinking when they told you "FreeBSD was the most secure." Now, given that, I certainly feel much more secure with FreeBSD than MS Windows...but it's probably not a really well-founded feeling, other than those things mentioned above. KDK