Results 1 to 3 of 3

Thread: Is it true that BSD is more secure than Linux ? Looking for an unbiased opinion

  1. #1
    Join Date
    Jan 2010
    Location
    India
    Beans
    Hidden!
    Distro
    Ubuntu Budgie 20.04 Focal Fossa

    Is it true that BSD is more secure than Linux ? Looking for an unbiased opinion

    I have read discussions on the web about this topic. Some people agree while others don't.

    What is your opinion about this ?

    There are 2 BSD OSs which have their primary focus on security namely HardenedBSD & OpenBSD.

    So in your (unbiased) opinion are these 2 really more secure than Linux ?

    DuckHook & TheFU I am eager to know what you guys have to say on this topic.
    Ubuntu Budgie 20.04

  2. #2
    Join Date
    May 2006
    Location
    Switzerland
    Beans
    2,752
    Distro
    Ubuntu 20.04 Focal Fossa

    Re: Is it true that BSD is more secure than Linux ? Looking for an unbiased opinion

    Quote Originally Posted by linuxyogi View Post
    I have read discussions on the web about this topic.
    So much for "reliable source"

    Quote Originally Posted by linuxyogi View Post
    Some people agree while others don't.
    Welcome to the Internet where people can argue all day long about all kinds of topics and never reach an agreement ...

    Quote Originally Posted by linuxyogi View Post
    What is your opinion about this ?
    Pretty much any OS can be made to be (reasonably) "secure" or can become very insecure, depending on who did the installation, what their level of knowledge (or lack thereof) is, what they use that OS for, and what they do with it, and how they do it.

    Quote Originally Posted by linuxyogi View Post
    There are 2 BSD OSs which have their primary focus on security namely HardenedBSD & OpenBSD.
    Security-centric Linux distributions exist too.

    Quote Originally Posted by linuxyogi View Post
    So in your (unbiased) opinion are these 2 really more secure than Linux ?
    Please define "Linux" ?? I feel you are comparing apples and oranges here. I feel this comparison is very flawed. And if by "Linux" you mean Ubuntu Linux: Comparing e.g. OpenBSD with e.g. Ubuntu Linux is "apples and oranges" again since the two cater to very different audiences who intend to do different things with it. A comparison between FreeBSD and Ubuntu Linux would be more appropriate. And something like HardenedBSD should probably best be compared with something like e.g. Qubes OS.

    I feel the only fair unbiased answer is: "It depends."

  3. #3
    Join Date
    Jun 2010
    Location
    London, England
    Beans
    Hidden!
    Distro
    Ubuntu Development Release

    Re: Is it true that BSD is more secure than Linux ? Looking for an unbiased opinion

    This is interesting. From the HardendBSD web site

    Our primary goal is to provide a clean-room reimplementation of the publicly-documented parts of the grsecurity patchset for Linux.
    When you compare it with this

    On April 26, the grsecurity project announced that it was withdrawing public access to its kernel-hardening patch sets; henceforth, they will be available only to paying customers of Open Source Security, Inc., the company behind this work.
    https://lwn.net/Articles/721848/

    And with this

    Don't bother with grsecurity. Their approach has always been "we don't care if we break anything, we'll just claim it's because we're extra secure".
    The thing is a joke, and they are clowns. When they started talking about people taking advantage of them, I stopped trying to be polite about their ********.Their patches are pure garbage.

    Linus
    https://www.spinics.net/lists/kernel/msg2540934.html

    Debian used to make grsecurity patches available to Debian users but when grsecurity patches were no longer publicly available the Debian developers decided not to make them available in Debian any more.

    https://wiki.debian.org/grsecurity

    OpenBSD takes a different approach;

    To ensure that novice users of OpenBSD do not need to become security experts overnight (a viewpoint which other vendors seem to have), we ship the operating system in a Secure by Default mode. All non-essential services are disabled. As the user/administrator becomes more familiar with the system, he will discover that he has to enable daemons and other parts of the system. During the process of learning how to enable a new service, the novice is more likely to learn of security considerations.
    https://www.openbsd.org/security.html

    I would contend that this approach is contrary to the principle that Ubuntu is for Humans. It is all a matter of choice. Which in turn is based upon need. Although for many people their so-called needs are determined by commercial organisations and advertising.

    Regards
    Last edited by grahammechanical; April 21st, 2021 at 05:05 PM.
    It is a machine. It is more stupid than we are. It will not stop us from doing stupid things.
    Ubuntu user #33,200. Linux user #530,530


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •