The "original" BSD project.
http://www.freebsd.org/
An off-shoot of FreeBSD which places security as a first priority.
http://www.openbsd.org/
A set of extensions to FreeBSD with a goal of meeting government
security criteria (like B2).
http://www.trustedbsd.org/
The kernel these systems use has a built in packet filter just like
linux. While the systems are entirely open, the code which actually
goes into the distribution is from a group of developers much smaller
than the linux development approach. Generally speaking this has
resulted in fewer bugs. OpenBSD presently claims to have gone 2 years
without a remote or local hole in the default install.
Sorry, I don't follow SCO stuff at all.
-Rich
On Sun, 7 May 2000, Reynaldo Gumbao wrote:
>
> Just curious re: this BSD .You say it's a more secure OS.Anyone knows
> what firewall's
> run on BSD commercially.Can anyone point me to their website.
> BTW have anyone heard of Cyberguard Firewall they say it runs on Unixware
> 2.1 .They
> said that they have bought the sourceCode from SCO.They say they ran their
> Firewall
> on top of the Unixware where they have re: do the OS of Unixware.And now
> they
> say they have the most secure firewall running on a most secured OS.
> They're OS was rated as B2 level w/c no one was the're yet to be a B2
> Level ?
> Is this true?
> Any comments from this?Please send me comments.
>
>
>
> ----- Original Message -----
> From: "Richard Noonan" <[EMAIL PROTECTED]>
> To: "Myron Jabido" <[EMAIL PROTECTED]>
> Cc: <[EMAIL PROTECTED]>
> Sent: Saturday, May 06, 2000 1:50 PM
> Subject: Re: Basics of firewall setup
>
>
> > Many people feel that the *BSDs are more secure by nature. In a
> > nutshell, they have a much slower rate of change in their code. In
> > intent, at least, OpenBSD would be the most secure. I would look into
> > it for any BSD based firewall.
> >
> > Having a cursory look at the Drawbridge website I'd say they are
> > adding performance not features to the existing packet filter which is
> > much like the one available in linux. So, on that level, not much
> > difference. The keys are things like code review (OpenBSD hallmark)
> > and how much system hardening you're capable of doing. On that last
> > subject someone has likely written a book, so I'll leave it at that.
> >
> > -Rich
> >
> > On Fri, 5 May 2000, Myron Jabido wrote:
> >
> > > Hello,
> > >
> > > I guess I should be more specific on my question. It's going to be my
> job
> > > to setup this firewall on a system running RedHat Linux. My boss had
> heard
> > > of Drawbridge, which as far as we know is only compatible with FreeBSD,
> not
> > > RedHat Linux. He said that he'd be willing to get FreeBSD and
> Drawbridge if
> > > it's more secure, but we would like to see if the security features of
> > > RedHat Linux are adequate. Does anyone have any experience with this?
> > >
> > > Thanks again.
> > >
> > > Myron
> > > ________________________________________________________________________
> > > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
> > >
> > > -
> > > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > > "unsubscribe firewalls" in the body of the message.]
> > >
> >
> > --
> >
> > -
> > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > "unsubscribe firewalls" in the body of the message.]
> >
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
--
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
