+ +In another FUD-fighting article, security writer Kurt Seifried and +Bastille Linux project leader Jay Beale refute a recent well-circulated +article saying open source software is more vulnerable because the +black hats can find bugs just by reading the source. If this were the +case, they argue, OpenBSD could not have achieved its security record. +They counter the claim by demolishing "security through +obscurity", the myth that just won't go away. +
+ +
+ +Elias Levy of BUGTRAQ fame discusses the security of open- vs. closed-source +software. OpenBSD developers are mentioned first among a few groups of people +who care about auditing code for security vulnerabilities. +
+ +
+ +In a review of FreeBSD 3.4, the author, Clifford Smith, was impressed +enough about OpenBSD to say "OpenBSD is probably the most secure +distribution out of the box because it comes with a source code that has +been given a complete security audit. It also comes with KERBEROS enabled +out of the chute, OpenSSL and ssh is part of the distro now, too. IPFilter +works immediately. Just Brilliant." +
+ +
@@ -854,7 +883,7 @@
www@openbsd.org
-$OpenBSD: press.html,v 1.82 2000/04/17 12:47:11 aaron Exp $ +
$OpenBSD: press.html,v 1.83 2000/04/25 01:41:31 louis Exp $