OpenBSD – WindowsTechs.com

Is a "single" cpu safer than multiple cores?

Posted on July 7, 2024 by peterK88

Should I use the plain "bsd" or "bsd.mp" kernel if I need a safer operating system? eg.: against side-channel attacks.
Thinking of that even 2 physical core CPUs can share something between each other that can be used f… Continue reading Is a "single" cpu safer than multiple cores?→

Is OpenBSD still most secure?

Posted on January 2, 2024 by Mark Kern

OpenBSD is considered by many people to be the most secure operating system for servers and firewalls. Why?

It doesn’t provide sandboxing tools, such as bubblewrap.
It doesn’t provide tools to reduce the kernel attack surface, such as gvi… Continue reading Is OpenBSD still most secure?→

Would FreeBSD and OpenBSD have similar known-past-vulnerability stats if they were configured similarly?

Posted on November 18, 2021 by bobcat

OpenBSD has had much fewer "code execution" vulnerabilities and even fewer exploits than FreeBSD, according to https://cvedetails.com :

https://www.cvedetails.com/product/163/Openbsd-Openbsd.html?vendor_id=97
https://www.cvedeta… Continue reading Would FreeBSD and OpenBSD have similar known-past-vulnerability stats if they were configured similarly?→

Would this HTTP server setup be reasonably secure?

Posted on April 22, 2021 by Cipher Visor

(This is a duplicate of my question here). I want to know if this hypothetical setup is reasonably secure to the point where it can’t be conventionally hacked remotely over Tor, from which it is accessible, and for it to be hacked the atta… Continue reading Would this HTTP server setup be reasonably secure?→

Are there any kernel’s which can upgrade without reboot? [migrated]

Posted on March 17, 2021 by Samuel Marks

(excluding toy, academic-only, and unmaintained)
My use-case is getting nontechnical people to have servers deployed for them, and for neither me nor them to worry about [attended] maintenance and security. Maximum of 3 binaries deployed, … Continue reading Are there any kernel’s which can upgrade without reboot? [migrated]→

Are there any kernel’s which can upgrade without reboot? [migrated]

Posted on March 17, 2021 by Samuel Marks

Why do people use "burner phones" rather than Signal or similar solutions?

Posted on June 8, 2020 by EmLi

Why do people use burner phones rather than Signal or similar? I would imagine that if you are high value target the police or intelligence service would simply eavesdrop every phone call passing the base station nearest the location where… Continue reading Why do people use "burner phones" rather than Signal or similar solutions?→

New OpenSMTPD RCE Flaw Affects Linux and OpenBSD Email Servers

Posted on February 25, 2020 by Unknown

OpenSMTPD has been found vulnerable to yet another critical vulnerability that could allow remote attackers to take complete control over email servers running BSD or Linux operating systems.

OpenSMTPD, also known as OpenBSD SMTP Server, is an open-so… Continue reading New OpenSMTPD RCE Flaw Affects Linux and OpenBSD Email Servers→

Serious Security – How ‘special case’ code blew a hole in OpenSMTPD

Posted on January 31, 2020 by Paul Ducklin

Patch now before you receive a message that’s more than just bad news! Continue reading Serious Security – How ‘special case’ code blew a hole in OpenSMTPD→

Qualys Reveals Critical OpenBSD Mail Server Security Flaw

Posted on January 30, 2020 by Michael Vizard

Qualys Research Labs disclosed this week a security flaw in the OpenSMTPD mail server used within the OpenBSD distribution of Linux that allows a cyberattacker to execute arbitrary shell commands with elevated privileges at a root level. Jimmy Graham,… Continue reading Qualys Reveals Critical OpenBSD Mail Server Security Flaw→