Linked by Tony Bourke on Thu 29th Apr 2004 19:08 UTC
OpenBSD OpenBSD is a name synonymous with security, having earned the respect and adoration of security-concious sysadmins everywhere. OpenBSD is used in data centers all over the world, is the basis for several security products (from OpenBSD's site), and is even the basis for Microsoft's Services For Unix.
Permalink for comment
To read all comments associated with this story, please click here.
Correction, suggestion, and question.
by dpi on Thu 29th Apr 2004 22:37 UTC

"Pretty much the only outside services turned on in OpenBSDby default are sendmail and sshd. Otherwise, the machine is deaf to the world."

Counts only for SSHd and perhaps you don't want the whole world to connect to your SSHd. Sendmail (+ patches) is used internally only to send you status reports. Debian uses this scheme regarding as less services as possible and internal MTA basically as well except that you chose how you want the MTA running. No MTA? No status reports; and you miss something without these. However i wouldn't say the "machine is deaf to the world" because it doesn't run its' internal MTA.

"between Darren Reed (author of IP Filter) and Theo De Raadt (infamous head of the OpenBSD) over licensing issues led to OpenBSD creating its own packet filter."

Led tro Daniel Hartmeier coding PF in silene whole the flamewar continued. Then, it was there, and it was available for OpenBSD 3.0 as an add-on. 3.0 still came with IPF though. Since 3.1 it has been the default and since then it matured. PF can do much more than IPF already and also than IPT. It is also -imo- very, very more user-friendly than either of these 2.

If i may make a suggestion i'd suggest to experiment with SUN Ultra 5 + OpenBSD + PF + Bridging for your firewall. I think you'll like it. You can also redirect from LAN to "bogus IP" (null-routed, vlan) port 22 to the Bridge if you prefer. Or use serial line:) try Snort on it, with ACID, and a database backend, and enjoy your home-made Carnivore ;)

Now some questions: 1) how much power does the Ultra5 consume? 2) How high is your case? According to some statistics i read the case is 11,6 cm high (or should i say "low"?). 3) I'd also like to know how many HDD's it can hold (including taking out the CDROM player) and which HDD's the IDE interface can handle (AT100? ATA133? Any problems regarding the size of the HDD?). The technical documentation i read doesn't correlate with what others have told me, so far...