[wplug] A little BSD/Linux history question
Patrick Wagstrom
pwagstro at andrew.cmu.edu
Tue Feb 22 16:31:30 EST 2005
You might want to check out Bastille Linux at
http://www.bastille-linux.org/. They provide hardened binaries that
have been verified by many people. Also, it's a misnomer to think that
OpenBSD gets its security from looking just at the kernel. It's lots of
other things, like making sure all other programs are audited and only
installing minimal packages. It's more of a mindset sorta thing that
they have. Also, there is some licensing related issues. One of the
goals of OpenBSD is to have only BSD licensed software. This is part of
the reason for the creation of OpenCVS. Apparently they've got a good
roadmap on where to go for everything except replacing GCC.
--Patrick
On Tue, 2005-02-22 at 16:23 -0500, Zachary Uram wrote:
> Is there a Linux analog to Openbsd? I know of some distros that
> Trustix and add-in security solutions like SeLinux (ACLs) and Kerberos
> but I've never heard of additional vetting of code for security flaws
> beyond the normal auditing that occurs with kernel development. Or
> because Linux has so many eyes examining the kernel is the result the
> same as with OpenBSD?
>
> Zach
> _______________________________________________
> wplug mailing list
> wplug at wplug.org
> http://www.wplug.org/mailman/listinfo/wplug
>
More information about the wplug
mailing list