DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD General

OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 27th March 2012
daemonfowl daemonfowl is offline
bsdstudent
 
Join Date: Jan 2012
Location: DaemonLand
Posts: 834
Default security VS reliability .. what implicature ?

Hi BDS Lovers !!

Security VS Reliability ..

while reading the errata page a week ago , a question came into my mind concerning the dividing line between a security issue , and a reliability issue ..
what does each involve ? what can a reliability fix be which a sec fix can't and vice versa ?
I'm sure the OpenBSD Team does not swap the two terms , nor do they use them gratuitously..

Last edited by daemonfowl; 27th March 2012 at 03:51 PM.
Reply With Quote
  #2   (View Single Post)  
Old 27th March 2012
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,975
Default

Per the Computing Dictionary:
  • reliability definition

    system
    An attribute of any system that consistently produces the same results, preferably meeting or exceeding its specifications. The term may be qualified, e.g software reliability, reliable communication.
  • security definition

    security
    Protection against unauthorized access to, or alteration of, information and system resources including CPUs, storage devices, and programs....
The security definition continues with additional inclusions, such as confidentiality, authentication, non-repudiation and more; I will leave it to you to do your own research at http://dictionary.reference.com if you are interested in further definition.


As for OpenBSD, let us look at this simple Venn Diagram, linked from Wikipedia for expediency:



Assume that the set on the left is Reliability, and the set on the right is Security. The union of the two is where Reliability and Security are the same. In software terms, this is often areas where coding errors impact both. The effort to eliminate those problems is described as a drive for code correctness.

OpenBSD's security goals are described in www.openbsd.org/security.html, where the Project's Audit program is described. The text discusses the effort to establish and maintain code correctness:
"We are not so much looking for security holes, as we are looking for basic software bugs....During our ongoing auditing process we find many bugs, and endeavor to fix them even though exploitability is not proven. We fix the bug, and we move on to find other bugs to fix. We have fixed many simple and obvious careless programming errors in code and only months later discovered that the problems were in fact exploitable."
In summary, then, while the size of the union of the two sets is non-deterministic, I believe it is quite large, and I appreciate the Project's effort to strive for correctness as a cornerstone of both proactive security and reliability.

Last edited by jggimi; 27th March 2012 at 05:54 PM. Reason: clarity
Reply With Quote
  #3   (View Single Post)  
Old 27th March 2012
daemonfowl daemonfowl is offline
bsdstudent
 
Join Date: Jan 2012
Location: DaemonLand
Posts: 834
Default

Thanks very much Jgimmi !!
I bet the intersectional sphere is the outcome of the OpenBSD Team's strife to put coding parameters back on track .. so .. reliability is code correctness and security is system-wide correctness and both make up what might be technically labelled {a mature & stable OS} .. I am right here ? am I right to say that Tanenbaum diapproves of linux kernel because of this very issue ? code correctness .. while praising NetBSD .. the more one tries to patch and fix issues the more it gets worse until it reaches windows-like cases .. underneath .. I remember he used the word spaghetti .. as analogy ..
In what way am I wrong to characterize MacOsX (for instance) as a {reliabe+insecure} OS ?

Last edited by daemonfowl; 27th March 2012 at 08:36 PM.
Reply With Quote
  #4   (View Single Post)  
Old 28th March 2012
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,975
Default

I honestly don't know, Daemonfowl. I perceive knf(9) and the audit program as ways to manage both problem/error sets, beyond their union. But these alone do nothing for third party applications (ports/packages), and in many cases, that's what we depend upon.

We rely on security technologies developed by and included with OpenBSD to help protect us from bugs in the OS or in third party applications, and those may have security implications. Example technologies that come to mind: ProPolice, W^X, strlcopy, malloc randomness. There are more. Most of these will function without modifications to third party software. Some, like strlcopy and its sister function strlcat, require active implementation in the source code, either by the port maintainer or conducted in upstream development by the 3rd party.

Some of these technologies will stop a flawed application from functioning, reducing the application's reliability but increasing the security and reliability of the overall system. This would be in a problem space where, from the flawed application user's perspective, the sets do not have a union.

---

I have no experience as a user of OS X (other than casually using someone else's workstation for short periods) and therefore do not know anything about either its reliability or its security. I know that it has closed source components, and, like any closed source program, reliability can be subjective, and perhaps anecdotal.

I can't talk to Andrew T.'s public pronouncements, since I haven't read them.
Reply With Quote
  #5   (View Single Post)  
Old 28th March 2012
daemonfowl daemonfowl is offline
bsdstudent
 
Join Date: Jan 2012
Location: DaemonLand
Posts: 834
Default

Quote:
Some of these technologies will stop a flawed application from functioning, reducing the application's reliability but increasing the security and reliability of the overall system
@Jgimmi , thanks again !!

concerning Tanenbaum's statement , look here please :
http://lwn.net/Articles/467852/

Quote:
If you want to change the memory manager, only one module is affected. Changing it in Linux is far more complicated because it is all spaghetti down there.
as for Mac .. here is 1 reason why I mentioned it :
http://newsgroups.derkeiler.com/Arch.../msg00778.html
http://www.zdnet.com/blog/security/q...ie-miller/2941

People can easily get infatuated with Mac .. it's like Pandora's charm .. even Larry Wall courted the OS : "Apple has always been, tried to be, at least, the arbiter of good taste" .
as far as usability is concerned .. I confess Mac is super-easy super-user-friendly (yet a GUI-jailed user-friendliness ) .. that it allows fast data transfer (usb , firewire .. ) .. that it offers a superfast (but also super-expolitable) Safari .. that it has a charming GUI .. Yet .. for some , an fvwm with an xsetroot -solid springgreen would outmatch all GUIs ..
Diogenes once said : " What a lot of things I don't need .. " :-)
Reply With Quote
  #6   (View Single Post)  
Old 28th March 2012
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 3,318
Default

Quote:
Originally Posted by daemonfowl View Post
am I right to say that Tanenbaum diapproves of linux kernel because of this very issue ?
My suspicion is that you are reading what you want into Tanenbaum's statements. To understand Tanenbaum's beef is to go back & read the original newsgroup argument they had back in the early '90's:

http://en.wikipedia.org/wiki/Tanenba...orvalds_debate

Much of their argument centered around Tanenbaum advocating microkernel design as being the next step in OS implementation while Torvalds advocated a simpler monolithic structure because it is easier to implement. Much of their debate was fueled by their respective egos, & because the feud was so public, this may have led to the rise of Linux because:
  • many OS enthusiasts read the newsgroups in which both pontificated their agendas.
  • making the Linux kernel free (as in GNU free...) enticed many to play with it since there was no charge to do so.
While Tanenbaum has a point in the links provided earlier in this thread, I also suspect he is not totally unbiased given the debate taking place twenty years ago.
Reply With Quote
  #7   (View Single Post)  
Old 28th March 2012
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,975
Default

"The spaghetti down there" I think may have been a reference to the scheduler. I'm getting that from the huge comments, I haven't started to read the interview... But from them, I can see that everyone responding appears to interprets the interview from their own history; and their own biases.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
*AMP Security: suPHP and CGI classicmanpro NetBSD General 1 14th February 2011 10:46 PM
Hard disk reliability ephemera General Hardware 32 20th April 2010 10:17 AM
NetBSD New security advisories J65nko News 0 16th January 2010 12:05 PM
Browser Security shep OpenBSD Security 4 4th January 2010 02:48 PM
OpenBSD OpenBSD Reliability Fix: kernel NULL pointer dereference in getsockopt() J65nko News 0 28th October 2009 11:56 PM


All times are GMT. The time now is 08:10 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick