[ I vaguely recall a similar thread on the old forum... ]
NetBSD obviously offers a lot of the fundamental security advantages that many *nix systems provide. At the base system level we have the benefit of an advanced, well tested OS.
The manpages for
security(8) are illuminating, but I wonder if there aren't further tips (sysctl MIBs? other configuration/hardening ideas?) specific to NetBSD that could help secure a system.
Is anyone using Veriexec, or any of the other NetBSD exploit mitigation tools? How about other NetBSD OS-level security tools or resources you would like to share?
Feedback appreciated.