[ Thanks to Nobody for this link.
]
“Last week I installed OpenBSD for the first time. I found
that OpenBSD has done a lot of things right and that there are some
things that the Linux community should study and emulate.
Principles the OpenBSD developers are following such as “Secure by
Default mode” and code auditing are things that we should be doing
to Linux.”
“Over the six years that I have been using Linux it has taken
more and more work to secure a machine once I have installed it
from the CD. Some of this is from my skill level and knowledge
increasing and some is from the additional software and services
that the distributions are including. The last Linux installation I
did on my machine at home took much more time to secure than it did
to install.”
“This is of course not really a Linux problem. The Linux kernel
is the least of our worries it is instead the software in the
distribution that is the problem. The organizations that build the
distributions in the most part configure them to have the most
services running and do not set them up with security in mind.”