This is an open call to any willing to contribute a summary or even an extensive analysis of the ways that OpenBSD is superior in terms of security to Linux and other systems. The motivation stems from two comments that have appeared here recently by cynwulf (1,2). To clarify the motivation for this is not to counter such a presentation to defend linux but to learn ourselves, as we simply don’t know. Between the marketing rhetoric of various systems it is hard to really tell what claim really stands up and what is unsupported. From the long list of open and sometimes free operating systems you will hardly find one that doesn’t claim it is secure. So here we go revisiting the terms security, privacy, anonymity, to conceptualize what in general data-security means and whether one needs to be concerned, or not – so concerned. Continue reading
After Spectre and Meltdown, and the wishful patching of Intel’s security holes, now there is “Foreshadow”
Intel has been notified by various researchers that yet another security gap has been found in their processors. The vulnerability affects its chip security technology called Software Guard Extensions (SGX). This technology has been used in Intel processors since 2015 (2nd generation i3,i5,i7,xeon 3400+, X99 and X299 and later/above. 1st gen i* and Core2Duo or earlier are safe. Continue reading
An interesting post by a person nicknamed as cynwulf posted this comment which I may disagree in a few tiny remarks, agree over all, and want to clarify what is generally perceived as political and what I consider to be political.
First it is better to read what Cynwulf had to say on the issue of security: Continue reading
Those two recent discoveries of a system vulnerability is due to hardware design and kernel development. One of the two has been partially addressed and fixed if you have updated your linux kernel to a patched one. The remaining seem pretty hard to be dealt with. In summary there is a way for memory handling to be leaked to the network revealing any sensitive information that may be temporarily retained as RAM or graphical memory. It is best not to read on rumors and interpretations but read the originals and monitor the status of fixing. At least temporarily you may change some habits and constantly wipe your memory to minimize the risk. Below find a set of links that official information originates and judge for yourself. Continue reading