|
|||
Browser Security
I finally feel comfortable setting up and running a current OpenBSD system and as part of a New Years resolution have been trying to increase the security of my home network. I have one computer on a NIC and I just finished changing the rest from WEP -> WPA2. The one on the NIC is running Arch linux.
I'm predominately a desktop user and the things that concern me the most are online banking and online purchases with credit cards. These tasks are browser based and my bank web site will not work with lynx. I delete all web cookies after purchases and banking. I maintain a simple web site for our local EAA chapter and may take advantage of the email server our web host has I am thinking about putting an OpenBSD current system on the NIC cable. My choice of current is based on the availability of newer browser versions with security updates. With that background onto the questions: 1) Is it worth the migrating the OpenBSD system to the NIC ie. do I gain anything over Arch Linux and if so what? How important is the gain? 2) What are the chances that current will break irrevocably if I "pkg_add -F update -u" periodically? I'm willing to back up my home directory before updates. How often do current users have to rebuild xenocara, kernel and userland? Thanks in advance for your input |
|
|||
Quote:
Saves a lot of wear and tear on your disk, saves electricity and thus is good for the environment. I wonder if I could make some money by selling my unused carbon emission rights I have two disks in my sytem. I use both disks to install OpenBSD snapshots. If I want to try a new snapshot, I do a fresh install on the oldest snapshot disk. That way I always have a working snapshot on the other disk to fall back on. If you are careful you could follow a similar procedure by using two OpenBSD MBR partitions on a single disk. But as disks are cheap, I don't bother anymore.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump |
|
|||
I too do NOT usually compile anything, most of my requirements (security and userland) are met by binary packages, while you could call me a liar for recently patching and recompiling my kernel(s) (need an i386 sp and mp kernel patched). I usually do all my testing in a virtual machine, even my compiling, it makes me feel safer from me
I have a small shell script, that calls other shell scripts that peels out my configs and some user settings (log files too on firewall). I like J65nko prefer multiple hard disks, they ARE very inexpensive and are good to have handy, I do also make triplicate backups of all my important files. Quote:
Quote:
I actually had a booboo earlier this evening, the livecd that jggimi produces saved me quite a headache when i had to recover 1 tarred up file (full of configs and user settings) from a blown out install. I could have saved the install but opted to instead reinstall on one of my laptops, i had all the required configs and setting files needed.
__________________
The more you learn, the more you realize how little you know .... Last edited by There0; 1st January 2010 at 12:03 PM. |
|
|||
Quote:
Quote:
|
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
NetBSD 5.0 wifi/wireless network browser/scanner | vermaden | NetBSD General | 9 | 5th July 2009 12:56 AM |
Need a lightweight browser to replace Fx3 | TerryP | General software and network | 15 | 12th February 2009 10:45 PM |
Best web browser for *BSD systems | JMJ_coder | Other BSD and UNIX/UNIX-like | 92 | 2nd January 2009 09:27 PM |
Google Chrome browser | drhowarddrfine | General software and network | 63 | 15th September 2008 11:09 PM |
Problem for associated a program to browser on Xfce | aleunix | OpenBSD Packages and Ports | 2 | 3rd June 2008 02:54 PM |