IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [openbsd]

OpenBSD is a Unix computer operating system descended from Berkeley Software Distribution (BSD) which emphasizes portability, standardization, correctness, proactive security and integrated cryptography.

34 questions
6
votes
2 answers

Is installing an old version of OpenBSD on an internet-facing server a security risk?

I have one specific package (moodle) which is not available on newer versions of the aforementioned OS. The last version of moodle was available on OpenBSD 5.3, which is more than 4 years old. Knowing of OpenBSD's impressive security track…
user166931
  • 69
  • 2
6
votes
2 answers

Is there any safe OpenBSD desktop screenlocker?

Linux screen lockers don't seem so very secure, at least not in the past [1, 2, 3]. But is there any very secure OpenBSD screen locker? (Or perhaps OpenBSD uses the same desktop related source code as Linux and therefore would have similar…
KajMagnus
  • 707
  • 1
  • 5
  • 10
3
votes
2 answers

For a simple purpose, a simple httpd server is more secure?

Using OpenBSD for example, we have a task to serve static html files, no php/cgi/etc. Q: What would be more secure? Using a default apache/nginx -OR- using (KISS principle) a chrooted www server that is just one lines long? Example: python -m…
gasko peter
  • 873
  • 2
  • 12
  • 21
3
votes
2 answers

Is OpenBSD's low number of exploits really that relevant?

The number of OpenBSD's known vulnerabilities is tiny, but so it's the number of users. How significant is this scarceness of exploits found?
Pierre B
  • 248
  • 1
  • 4
2
votes
3 answers

Is running an OpenBSD in QEMU on an OpenBSD machine safe?

Is running an OpenBSD** using QEMU on an OpenBSD safer then running just natively an OpenBSD? ** = only used for apache + scp + ssh I'm thinking about running the OS/webserver in QEMU because then I could be "more flexible" to use the securelevel…
LanceBaynes
  • 6,279
  • 12
  • 63
  • 92
1
vote
1 answer

Why does paxtest show OpenBSD as vulnerable?

install60.iso Executable anonymous mapping (mprotect) : Vulnerable Executable bss (mprotect) : Vulnerable Executable data (mprotect) : Vulnerable Executable heap (mprotect) : Vulnerable Executable shared library bss (mprotect) :…
Peter84753
  • 101
  • 5
0
votes
3 answers

Verifying consistency of OpenBSD LiveCD

OpenBSD offers a live cd that can be downloaded at http://livecd-openbsd.sourceforge.net/ However, there is no md5sum, no sha256, no checksum of any kind on this page. How can we test this version for integrity?
Pierre B
  • 248
  • 1
  • 4
0
votes
2 answers

Why is systrace insecure?

Why is the: http://www.openbsd.org/cgi-bin/man.cgi?query=systrace&sektion=4 Systrace marked as insecure? Can someone explain the "why"?
gasko peter
  • 873
  • 2
  • 12
  • 21