> Let me address the last paragraph first by stating I've been running Linux
> for 9 years now. I prefer Linux over the BSD varients hands down.
>
> HOWEVER, there is no way I'm going to use Linux for a Firewall, and I'd even
> think twice before using it as a server. OpenBSD has now gone over three
> years without a remotely exploitable hole, when using the default install.
> The entire reason for OpenBSD's existance is security. My OS of choice for
> running a firewall would be OpenVMS, however, since the software to do
> firewall and NAT doesn't really exist for OpenVMS, I run OpenBSD.
>
> If you have enough machines around do a default install of what ever Linux
> distro you were thinking of on one, and OpenBSD on another. Then run some
> tools for checking for vulnerabilies against the two. You just might find
> the results disturbing.
>
> Zane
Agreed...
I'd actually consider FreeBSD or NetBSD for firewall duty.
The only Linux I'd consider for a firewall is a distribution I'd
roll myself. (Building every utility and control file manually)...
I'm considering building a Linux varient that has a BSD style build
environment and less of the lovely autoconf built gnu stuff.
...and no RPM's.
--Bill
Bill
--
bpechter_at_monmouth.com | FreeBSD since 1.0.2, Linux since 0.99.10
| Unix Sys Admin since Sys V/BSD 4.2
| Windows System Administration: "Magical Misery Tour"
Received on Thu Dec 28 2000 - 19:04:34 GMT