Security Basics mailing list archives

Re: Newbie: RedHat 8 or OpenBSD??

From: Ash <ashcrow () phreaker net>
Date: Thu, 31 Oct 2002 20:28:22 -0500

On Wednesday 30 October 2002 03:56 pm, GSG Designs wrote:

I'm fairly new to this, so please bare with me.  If this question has been
asked in the past, I apologize.  I'm new to the listserv as well.


Welcome to the list!

We are discussing starting our own web server.  There is debate on whether
RedHat 8 or OpenBSD is more secure.  What are your thoughts?  We will be
doing online orders with credit card info, etc.  Do you have any resources
to point us to?  (We will be running Apache, probably a 'duh'.)


OpenBSD is more secure. A lot of the code has been patched for strl* functions 
isntead of str* for one, there was a code audit, there is integrated suport 
for crypto, and it's the main focus of the project. One of the drawbacks to 
Red Hat is they like to use the latest software which can lead to the latest 
bugs.

On a more practical note both can be setup to be 'secure' but it has been my 
experience that OpenBSD takes less time as long as you are comfortable in a 
Unix environment.

Cheers,
Ash

---
Darkfire Secure Linux
http://www.gnulinux.net

Current thread:

RE: Newbie: RedHat 8 or OpenBSD?? Golden_Eternity (Oct 31)
- Re: Newbie: RedHat 8 or OpenBSD?? Jerry M. Howell II (Nov 01)
- <Possible follow-ups>
- RE: Newbie: RedHat 8 or OpenBSD?? Michael Vaughan (Oct 31)
  - Re: Newbie: RedHat 8 or OpenBSD?? Ryan Parr (Nov 01)
- Re: Newbie: RedHat 8 or OpenBSD?? Joe McCray (Nov 01)
- Re: Newbie: RedHat 8 or OpenBSD?? Ash (Nov 01)
- RE: Newbie: RedHat 8 or OpenBSD?? Anders Blockmar (Nov 01)
- RE: Newbie: RedHat 8 or OpenBSD?? Vince Hillier (Nov 01)
  - Re: Newbie: RedHat 8 or OpenBSD?? nobody (Nov 04)
- RE: Newbie: RedHat 8 or OpenBSD?? Mark M. Andrich (Nov 01)
- Re: Newbie: RedHat 8 or OpenBSD?? Ash (Nov 04)