DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 3rd August 2017
pawkolor pawkolor is offline
Fdisk Soldier
 
Join Date: May 2015
Posts: 53
Default Openbds httpd

Hello maybe me question will be naive.But I would ask about specific issue.My question is about rank server web "OpenBsd httpd" between another server.

I noticed President of USA and President of Russia use the same server "nginx" another Banks or air lines use IBM system web.Some use Apache.for example stock market in New York use cloudflare server.Paypal use Apache.

What 'll be level of security between this server Openbds httpd.
High or low.And better use commercial server or open source of course I'm asking about level for security.
Reply With Quote
  #2   (View Single Post)  
Old 3rd August 2017
ibara ibara is offline
OpenBSD language porter
 
Join Date: Jan 2014
Posts: 783
Default

Quote:
Originally Posted by pawkolor View Post
Hello maybe me question will be naive.
Quote:
Originally Posted by pawkolor View Post
I noticed President of USA and President of Russia use the same server "nginx" another Banks or air lines use IBM system web.Some use Apache.for example stock market in New York use cloudflare server.Paypal use Apache.
Assuming Trump knows what a web server is (and I doubt it), he would not personally use one. The Federal government of the US uses a wide array of tools, including web servers. The closest thing to a web server he runs is whatever Twitter us running these days.

But I think your comment answers your question for you. You identify a number of different scenarios and (according to you) these different scenarios use different solutions to solve their unique problems.

Quote:
Originally Posted by pawkolor View Post
What 'll be level of security between this server Openbds httpd.
High or low.And better use commercial server or open source of course I'm asking about level for security.
I don't know what kind of comparison you're asking for. Obviously code from the OpenBSD project is going to be secure.
Reply With Quote
  #3   (View Single Post)  
Old 4th August 2017
pawkolor pawkolor is offline
Fdisk Soldier
 
Join Date: May 2015
Posts: 53
Default

Which one isn't secure.? I just ask about OpenBsd httpd would be able works as server in Bank system for example.

Probably is reason why government IT guys use "nginx".Is very secure and fast.
Reply With Quote
  #4   (View Single Post)  
Old 6th August 2017
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Tcpdump Spy
 
Join Date: Apr 2008
Location: Netherlands
Posts: 2,243
Default

Both nginx and OpenBSD's httpd are secure. They do have a very different mentality and approach though.

When in doubt go with nginx, simply because that's better known and will be easier for "The Next Person" to modify and maintain.
__________________
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote
  #5   (View Single Post)  
Old 6th August 2017
pawkolor pawkolor is offline
Fdisk Soldier
 
Join Date: May 2015
Posts: 53
Default

Thanks you.And the last issue the server "CERN httpd" Does it has something in common with httpd OpenBSD.Or this is different project.
Reply With Quote
  #6   (View Single Post)  
Old 6th August 2017
PapaParrot's Avatar
PapaParrot PapaParrot is offline
parrot
 
Join Date: Jul 2015
Location: Durango, Mx.
Posts: 472
Default

Maybe this will explain :
https://en.wikipedia.org/wiki/Httpd

CERN httpd is discontinued, but yes they do have something in common as well,
Quote:
from: https://en.wikipedia.org/wiki/CERN_HTTPd Last release
3.0A / 15 July 1996; 21 years ago[1]
Development status discontinued
As far as the difference between security with httpd, and nginx:
I agreed with Carpetsmoker, they both seem to be secure, or have the
same security potential, this mostly depends on how one configures
the system, IE: A poorly configured system, and firewall, using Nginx,
could be very insecure, but the same, using httpd, if the firewall, etc is
not configured correctly it could be very insecure.
Both, in a properly configured system are very secure.
__________________
My best friends are parrots
Reply With Quote
  #7   (View Single Post)  
Old 6th August 2017
pawkolor pawkolor is offline
Fdisk Soldier
 
Join Date: May 2015
Posts: 53
Default

Thanks you .But what about CERN httpd .You said is not continued .I see for example in main Polish bank use this server.

http://193.109.225.100/


Why president of USA use Russian server.If USA forbid use kaspersky antivirus software.He he
Reply With Quote
  #8   (View Single Post)  
Old 6th August 2017
shep shep is offline
Real Name: Scott
Arp Constable
 
Join Date: May 2008
Location: Dry and Dusty
Posts: 1,503
Default

Along the lines server choices, the British site Netcraft, does regular online polling of server software, operating system. The market shifts are interesting.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
cms for httpd psypro OpenBSD General 1 9th August 2016 08:51 PM
Apache to Httpd frcc OpenBSD General 2 7th September 2015 05:49 PM
New httpd and PHP morophla OpenBSD Packages and Ports 21 31st August 2015 09:54 PM
OpenBDS 5.5 Problems with network interface during installation. tastelessbit OpenBSD Installation and Upgrading 9 29th August 2014 07:47 PM
Booting Failed (OpenBDS 4.3, 4.4) quanter OpenBSD Installation and Upgrading 5 27th November 2008 01:09 PM


All times are GMT. The time now is 04:46 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick