DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 22nd June 2011
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,889
Thanked 214 Times in 189 Posts
Default Thoughts on Information "Security"

I'll start by quoting myself from another thread, wherein the question was raised about an OpenBSD bastion firewall protecting one's network, one's privacy, one's digital life (business or personal). The question rose recently in a couple of different threads, but I believe this sums up the general case, whether or not OpenBSD is involved in any fashion.
Quote:
Originally Posted by jggimi View Post
Security is not a product. It its a process, and any chink in the armor can become a problem.
I had pointed to application level errors such as SQL Injection as something that OpenBSD is not able to prevent.

Network administrators, OS administrators, application architects, application developers, and, of course, users themselves all have a role to play in the pantheon of security risk mitigation.

I give you, as an example of insecure-by-design web applications: amazon.com, facebook.com, twitter.com, and 23 other major web players that send information to clients completely in the clear. Whether or not these major players use complex firewalls and security software themselves, they expose personal information, including accounts and passwords. By design. OpenBSD would have no impact on this Firesheep example. (Excepting, of course, astute, technically aware clients who might route traffic through an OpenBSD-based VPN or tunnel.)
Reply With Quote
  #2   (View Single Post)  
Old 22nd June 2011
qmemo's Avatar
qmemo qmemo is offline
Shell Scout
 
Join Date: Jul 2008
Location: Egypt
Posts: 133
Thanked 0 Times in 0 Posts
Default

@jggimi

It's all in the mind set of who ever see's *OpenBSD* as a one stop total security solution or else he 'd be doing his home work and by the end of it he 'd know that what he get from OpenBSD's team is what is granted by them nothing more or less.

It's in our nature to seek security any where and every where and we often fool our selves by not looking anything up just for the fear of what might come to be noticed as *more* work to be done in order to achieve the required level of security no matter if it's physical or mental.

I blindly hope that my reply was as good as your post.

Cheers
__________________
If 386BSD had been available when I started on Linux, Linux would probably never had happened." --Linus Torvald
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
How to replace "ectags" with "ctags"? fender0107401 OpenBSD Packages and Ports 5 16th April 2013 10:01 AM
Other Interesting "Security" Issue on GRUB 2 vermaden News 2 10th November 2009 01:19 PM
Fixed "xinit" after _7 _8, "how" here in case anyones' "X" breaks... using "nvidia" jb_daefo Guides 0 5th October 2009 09:31 PM
Thoughts on "make deinstall clean" Mantazz FreeBSD Ports and Packages 8 14th September 2009 06:45 PM
"Thanks" and "Edit Tags". diw Feedback and Suggestions 2 29th March 2009 12:06 AM


All times are GMT. The time now is 10:19 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick