On Dec 30, 2019 5:31 AM, Kevin Chadwick <m8il1i...@gmail.com> wrote: > > > > I liked the presentation. An excerpt from https://isopenbsdsecu.re/about/: > >> This website was done because studying mitigations is fun, not to get > >> involved in a huge flamewars or endless bike-shedding on mailing lists. > > It is not my place to comment, however I will say that it did not read to me > as > unbiased. Perhaps things like embargos were mentioned in the video. There are > significant mis-understandings and perhaps mis-informations, with at times > oppositional mistakes in the slides. My initial opinion is that very limited > research effort happened to aid credibility, not in order to create a fair and > comprehensive report. > > I welcome the praise on unveil and pledge though. It would be nice, if there > was > an OpenBSD version of GCP app engine for the less serious but easily scalable > web services! >
Even on points where they showed OpenBSD as being late to the game they always finished first. I researched Linux seccomp awhile back. It is a mess to use compared to a couple of lines of pledge/unveil. Much better long term to get it right so it's useable. Edgar
