--- 34,40 ---- Compact Flash. Largely runs untroubled, pushing ~ 400Mb/s. Main motivation was the cost savings compared to equivalent Junpier/Cisco kit. ! I hope to be testing the new MPLS code soon.
*************** *** 94,100 ****
I did some programming on an OpenBSD machine, after this I really appreciated the man pages. Other Unices I used had man pages that ! simply weren't any good.
Keep up the good work guys. --- 94,100 ----
I did some programming on an OpenBSD machine, after this I really appreciated the man pages. Other Unices I used had man pages that ! simply weren't any good.
Keep up the good work guys. *************** *** 103,135 **** I have installed, secured, and maintained Linux, Windows NT and OpenBSD in highly secure environments. (yes you can secure Linux and Windows NT in this environment :) ). Having said that I have to point out that if you ! want a minimum administration to keep up with security issues option you ! need to pick OpenBSD by far. It is not uncommon for people to go years without updating their production OpenBSD machines because they are just rock solid and there are no known "remote" vulnerabilities. Thus no good reason to upgrade...
! I would feel perfectly happy to have one of my [novice] interns do a basic OpenBSD install on a PC (no extra security work after the install) and then put the companies crown jewels on that machine and then walk away for a year. ! Knowing full well that machine hasn't crashed, been broken into or in need ! of an OS upgrade. You can't say that about NT or Linux. Or if you do you obviously haven't ever used the product that way :)
Another thing that I hear people point out is go check your local exploit site or vulnerability alert mailing list and see if you can find a "remote" ! root level exploit that works on OpenBSD. I dare say you won't find any that are less than 12 months old.
I work today with Solaris, OpenBSD, NT Server, NT Workstation and Win 95.
! After reading Bugtraq for some weeks I will say that I will never put ! any (important) machine on the Internet if there is not a firewall in front and for packet filtering I go for OpenBSD...
! For a cheap web server I say hardware from a known vendor, an ordered OpenBSD CD-ROM and Apache...
! I would feel perfectly happy to have one of my [novice] interns do a basic OpenBSD install on a PC (no extra security work after the install) and then put the companies crown jewels on that machine and then walk away for a year. ! Knowing full well that machine hasn't crashed, been broken into or in need ! of an OS upgrade. You can't say that about NT or Linux. Or if you do you obviously haven't ever used the product that way :)
Another thing that I hear people point out is go check your local exploit site or vulnerability alert mailing list and see if you can find a "remote" ! root level exploit that works on OpenBSD. I dare say you won't find any that are less than 12 months old.
I work today with Solaris, OpenBSD, NT Server, NT Workstation and Win 95.
! After reading Bugtraq for some weeks I will say that I will never put ! any (important) machine on the Internet if there is not a firewall in front and for packet filtering I go for OpenBSD...
! For a cheap web server I say hardware from a known vendor, an ordered OpenBSD CD-ROM and Apache...
Our OpenBSD servers were probed and then left alone.
! In the intervening two years, that original server got upgraded and patched several times and the OS never gave us reason to question the reliability or security of OpenBSD. --- 153,159 ----
Our OpenBSD servers were probed and then left alone.
! In the intervening two years, that original server got upgraded and patched several times and the OS never gave us reason to question the reliability or security of OpenBSD. *************** *** 178,198 **** It was a P133 with 64MB ram. And it didn't go down. It got a bit slower, but never crashed :-) !
(the comments he is responding to are Schneier's)
! Real systems show no signs of becoming less complex. In fact, they are becoming more complex, ! faster and faster. Microsoft Windows is a poster child for this trend to complexity.
...
! The other choice is to slow down, to simplify, and to try to add security.
--- 178,198 ---- It was a P133 with 64MB ram. And it didn't go down. It got a bit slower, but never crashed :-) !
(the comments he is responding to are Schneier's)
! Real systems show no signs of becoming less complex. In fact, they are becoming more complex, ! faster and faster. Microsoft Windows is a poster child for this trend to complexity.
...
! The other choice is to slow down, to simplify, and to try to add security.