-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 A good example of this would be 'Security-Enhanced' Linux distributions...
- - Brad Bemis - -----Original Message----- From: Tim Greer [mailto:[EMAIL PROTECTED] Sent: Friday, July 04, 2003 11:36 AM To: Ivan Coric; [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Question for you all I agree. FreeBSD and moreso, OpenBSD, are indeed more secure by default and you are correct that this doesn't mean it's more secure over all, there's just less word, at first. However, look at the kernel for OpenBSD compared to Linux to see how much better it's built. It really is built to be more secure and you can see it in the code. However, that's not to say that Linux's kernel can't be modified to do the same or similar things--though the effort involved, I'd just prefer to run OpenBSD. Conversely, I'd have no problem with running Linux with modifications and a proper set up, as that is able to be secured very, very well too. I say use what you want, they are both good. - -- Regards, Tim Greer [EMAIL PROTECTED] Server administration, security, programming, consulting. - ----- Original Message ----- From: "Ivan Coric" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Thursday, July 03, 2003 5:17 PM Subject: Re: Question for you all > Hi ae, > I think some of your comments are not exactly correct. OpenBSD is > secure by default because no services running, as soon as you activate > httpd or alike the actual daemon is what will be the problem not the > under lying OS. > As for RedHat, I like it, you can make it as secure as any distro, > thats what make linux so powerful, you have control, you can either > enable or disable any services you want. > When installing RedHat choose a custom install and then check select > individual packages, if thats not control I dont know what is. > > Also RedHat's distro comes with great tools by default, such as lsof, > nmap, tcpdump, tcpwrappers, sudo, ssh, xinet.d etc.. all must haves for > any box. > > cheers > > Ivan Coric > IT Technical Security Officer > Information Technology > WorkCover Queensland > Ph: (07) 30066414 Fax: (07) 30066424 > Email: [EMAIL PROTECTED] > > > >>> exon <[EMAIL PROTECTED]> 07/03/03 10:13pm >>> > On Mon, 30 Jun 2003, CreativeSell wrote: > > > Hi All, > > > > Having just got off an awful php host, my partner and I have decided > to get > > our own redhat server. However we are slightly apprhhensive about > ebing > > hacked to pieces. we are keeping up to date with all bugtracks and > security > > updates...what else can we do? > > > > Olly > > > > Scrap the Redhat dist and go with Owl or OpenBSD instead. RedHat is > more > of a client side OS than a server, so you'll see a lot of > 'userfriendly > features' that eases the management of the system, which provide > holes for attackers and won't be necessary if you intend to run it as > a > standalone server. > > The more userfriendly the design, the more 'hackable' and 'DoSable' it > gets. Just have a quick look at MicroSofts products and you'll get the > point. > > Cheers. > > /ae > > > -------------------------------------------------------------------------- - - > Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top > analysts! > The Gartner Group just put Neoteris in the top of its Magic Quadrant, > while InStat has confirmed Neoteris as the leader in marketshare. > > Find out why, and see how you can get plug-n-play secure remote access > in > about an hour, with no client, server changes, or ongoing maintenance. > > Visit us at: http://www.neoteris.com/promos/sf-6-9.htm > -------------------------------------------------------------------------- - -- > > > > *************************************************************************** > Messages included in this e-mail and any of its attachments are those > of the author unless specifically stated to represent WorkCover Queensland. The contents of this message are to be used for the intended purpose only and are to be kept confidential at all times. > This message may contain privileged information directed only to the intended addressee/s. Accidental receipt of this information should be deleted promptly and the sender notified. > This e-mail has been scanned by Sophos for known viruses. > However, no warranty nor liability is implied in this respect. > ********************************************************************** > > > -------------------------------------------------------------------------- - - > Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! > The Gartner Group just put Neoteris in the top of its Magic Quadrant, > while InStat has confirmed Neoteris as the leader in marketshare. > > Find out why, and see how you can get plug-n-play secure remote access in > about an hour, with no client, server changes, or ongoing maintenance. > > Visit us at: http://www.neoteris.com/promos/sf-6-9.htm > -------------------------------------------------------------------------- - -- > - --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm - ---------------------------------------------------------------------------- -----BEGIN PGP SIGNATURE----- Comment: KeyID: 0xB8F26ADD Comment: Fingerprint: 6E1C D617 CD65 A203 7FD5 4C68 90E7 39F4 B8F2 6ADD iQA/AwUBPwmd55DnOfS48mrdEQI8xQCgrv9UlEC7vjp400uf6b6kFP2CpgcAnRsg 7KY3cVEgrGsR2LBnNw5a5Stl =7P/6 -----END PGP SIGNATURE----- --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ----------------------------------------------------------------------------
