“”But why OpenBSD?” Truth be told, there are many operating
systems you could use as a gateway. Most will do the job and most
can be ‘hardened’ to provide very secure installs – provided you
know what you’re doing. With OpenBSD, however, you don’t need to be
an expert in computer security to have a hardened install. The base
install is already hardened. The OpenBSD developers spend a lot of
time auditing code. Hardware design errors aside, most security
‘vulnerabilities’ come down to poor software design or poor
software implementation, ie. bugs. A security bug is just a
software bug that can be exploited to have unintended
consequences.“The classic ‘buffer overflow’ attack is simply an exploit of
the original programmer’s failure to ensure the data input by the
user does not exceed the size of the buffer as defined in his C/C++
code. Rigorous auditing of code, like the OpenBSD project does,
ensures that such bugs are corrected so that the OpenBSD package of
an application has these bugs removed. However, it needs to be
understood that not all packages that run on OpenBSD undergo such
rigorous audits. The Base install of OpenBSD gives the user this
assurance. Installing software from the Ports collection may
represent an increased risk. I say ‘may’ because it presupposes
there are bugs remaining that can be exploited. OpenBSD typically
ports older, mature applications which are more likely to have had
their bugs ‘ironed out’ than the latest version of an application.
This, of course, may have a negative impact on functionality and
while OpenBSD can be used as a desktop OS, you’ll soon find that
it’s better as a server. Others may disagree, it’s just my opinion
and you can have yours.”
Web Webster has more than 20 years of writing and editorial experience in the tech sector. He’s written and edited news, demand generation, user-focused, and thought leadership content for business software solutions, consumer tech, and Linux Today, he edits and writes for a portfolio of tech industry news and analysis websites including webopedia.com, and DatabaseJournal.com.
LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.
Property of TechnologyAdvice. © 2025 TechnologyAdvice. All Rights Reserved
Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.