Originally posted by timofonic
View Post
Ultimately, the problem with OpenBSD is the same one that hangs over all the BSDs, Linux, Windows, and every other legacy OS. Their security paradigms originate in a time where the only problem to be solved was how to keep local mostly competent and mutually respectful users from accidentally tripping over each other. The Internet didn't exist. All users were generally well educated and trained to use the hardware their organizations owned and access was restricted via having to be physically present at a terminal. When personal computers and terminals came along, damage was still usually limited to single machines or accounts.
They're all inadequate in a threat environment where you can't trust even the actions of otherwise competent users (it only takes one screwup - and believing that competent users never screw up is just plain willfully stupid) let alone Suzy Secretary who can barely turn the computer on and panics when an icon disappears on her DE, or much less the hostile world at large on the other side of the departmental firewall.
Comment