version 1.82, 2000/04/17 12:47:11 |
version 1.83, 2000/04/25 01:41:31 |
|
|
|
|
<li><font color=#009000><strong> |
<li><font color=#009000><strong> |
<a |
<a |
href="http://www.securityfocus.com/commentary/19">Wide Open Source</a>, |
|
SecurityFocus.com, April 16, 2000 |
|
</strong></font><br> |
|
|
|
Elias Levy of BUGTRAQ fame discusses the security of open- vs. closed-source |
|
software. OpenBSD developers are mentioned first among a few groups of people |
|
who care about auditing code for security vulnerabilities. |
|
<p> |
|
|
|
<li><font color=#009000><strong> |
|
<a |
|
href="http://e-zine.nluug.nl/hold.html?cid=91">Interview with OpenBSD's |
href="http://e-zine.nluug.nl/hold.html?cid=91">Interview with OpenBSD's |
Theo de Raadt</a>, <font color=4669ad><sup>eup</sup></font> E-zine, |
Theo de Raadt</a>, <font color=4669ad><sup>eup</sup></font> E-zine, |
April 20, 2000 |
April 20, 2000 |
|
|
|
|
<li><font color=#009000><strong> |
<li><font color=#009000><strong> |
<a |
<a |
|
href="http://securityportal.com/direct.cgi?/topnews/os20000417.html">Open |
|
Source - Why it's Good for Security</a>, SecurityPortal.com, April 17, 2000 |
|
</strong></font><br> |
|
|
|
In another FUD-fighting article, security writer Kurt Seifried and |
|
Bastille Linux project leader Jay Beale refute a recent well-circulated |
|
article saying open source software is more vulnerable because the |
|
black hats can find bugs just by reading the source. If this were the |
|
case, they argue, OpenBSD could not have achieved its security record. |
|
They counter the claim by demolishing "security through |
|
obscurity", the myth that just won't go away. |
|
<p> |
|
|
|
<li><font color=#009000><strong> |
|
<a |
|
href="http://www.securityfocus.com/commentary/19">Wide Open Source</a>, |
|
SecurityFocus.com, April 16, 2000 |
|
</strong></font><br> |
|
|
|
Elias Levy of BUGTRAQ fame discusses the security of open- vs. closed-source |
|
software. OpenBSD developers are mentioned first among a few groups of people |
|
who care about auditing code for security vulnerabilities. |
|
<p> |
|
|
|
<li><font color=#009000><strong> |
|
<a |
href="http://www.32bitsonline.com/article.php3?file=issues/200004/badpressedit"> |
href="http://www.32bitsonline.com/article.php3?file=issues/200004/badpressedit"> |
Bad Press</a>, |
Bad Press</a>, |
32Bits Online, April 2000 |
32Bits Online, April 2000 |
|
|
about strong crypto because of the fuss over 128-bit browsers. The RSA patent |
about strong crypto because of the fuss over 128-bit browsers. The RSA patent |
has been a more effective muzzle on innovation than the export prohibitions. |
has been a more effective muzzle on innovation than the export prohibitions. |
Also note OpenBSD and FreeBSD also integrate IPv6 in their current codebase. |
Also note OpenBSD and FreeBSD also integrate IPv6 in their current codebase. |
|
<p> |
|
|
|
<li><font color=#009000><strong> |
|
<a |
|
href="http://www.32bitsonline.com/article.php3?file=issues/200002/fbsd34&page=1">Review |
|
of FreeBSD 3.4</a>, 32BitsOnline, February 2000 |
|
</strong></font><br> |
|
|
|
In a review of FreeBSD 3.4, the author, Clifford Smith, was impressed |
|
enough about OpenBSD to say "<i>OpenBSD is probably the most secure |
|
distribution out of the box because it comes with a source code that has |
|
been given a complete security audit. It also comes with KERBEROS enabled |
|
out of the chute, OpenSSL and ssh is part of the distro now, too. IPFilter |
|
works immediately. Just Brilliant."</i> |
<p> |
<p> |
|
|
<li><font color=#009000><strong> |
<li><font color=#009000><strong> |