tag:blogger.com,1999:blog-2842646859245542931.post6145502399588135296..comments2024-03-28T03:22:14.160-04:00Comments on trollaxor.com: Why I Uninstalled OpenBSDUnknownnoreply@blogger.comBlogger22125tag:blogger.com,1999:blog-2842646859245542931.post-28918262551741724002014-08-30T16:32:24.561-04:002014-08-30T16:32:24.561-04:00What was the second reason? You only mention first...What was the second reason? You only mention first and third.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-47956271253821283232014-07-28T00:39:23.087-04:002014-07-28T00:39:23.087-04:00FREE speech!
. .
~
FREE speech!<br /><br />. .<br /> ~<br /><br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-76112250729264342202014-07-20T07:12:51.875-04:002014-07-20T07:12:51.875-04:00A secret audit is absolutely valueless.
Imagine i...A secret audit is absolutely valueless.<br /><br />Imagine if drug companies were allowed just to claim that there drugs were safe without publishing any evidence that they had been tested or explaining the methodology or stating who had carried out the tests and what their experience was. Would you take the drugs?<br /><br />Theo is completely deranged and anyone who trusts someone who clearly has mental health issues to "do the right thing" is a fool.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-39716594089766344802013-09-23T05:25:30.791-04:002013-09-23T05:25:30.791-04:00Some details (filenames, incriminated expressions)...Some details (filenames, incriminated expressions) of two compromises were published here:<br /><br />ht tp://web.arc hive.or g/web/20120103060415/ht tp://extended subset.co m/?p=41<br />(remove spaces).<br /><br />There were patched a few yeurs later by the audit process of OpenBSD, and were only weakening openbsd a noticable small amount.<br /><br />Credits to the OpenBSD audit process: that backdoor was difficult to use.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-86381264879240687242013-08-08T17:54:06.405-04:002013-08-08T17:54:06.405-04:00picopicoAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-80110779593997037712012-08-23T01:28:33.866-04:002012-08-23T01:28:33.866-04:00Yeah, remember 2008 when it was discovered Debian ...Yeah, remember 2008 when it was discovered Debian was generating useless SSH/SSL keys because of a developer who commented out some random number generation that were throwing errors? For 2 years you could decrypt any SSH login http://research.swtch.com/openssl<br /><br />This is the difference between OpenBSD and almost every other distro: quality software auditing for security and stability. You can actually audit the OpenBSD base code (and they do). Linux Kernel development is now 15 million lines of code nobody can audit that. You're freaking out about something you yourself could look at and decide if it's secure or not, because it's transparently open to the world to see, and kept small to avoid the ballooning propagation of errors which is 15 million + kernel lines of code.<br /><br />EnGarde Linux and LOl liberte (enjoy using their cable communications which is a complete joke. not anonymous whatsoever) may be using 'hardened Gentoo' and have all sorts of fancy knobs you can fiddle with claiming to be MAC and stack overflow prevention but is completely useless because you're still running it on 15 million + lines of insecure kernel development. The entire core is broken, who cares about the icing being impressive.<br /><br />Linus Torvalds does not follow any sort of sane development cycle, he just pushes out features as fast as possible. There is no security focus, because Linux was never about security, and much of the old school guy's who sorted this stuff out and gave a flying f about quality control and bug squashing like Alan Cox all quit. <br /><br />Look up Histar, a tiny O/S purposely designed by PHD researchers to be ultra secure. You can audit all the code in a few days. But it has no knobs to fiddle with or fancy MAC fluff pretending to be security, so I guess you wouldn't like it. <br /><br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-90524634036583314732012-06-20T06:43:33.071-04:002012-06-20T06:43:33.071-04:00I'd get the same reaction from users in one of...I'd get the same reaction from users in one of the XCHAT rooms devoted to OBSD. They (the users) seem to avoid the question, and if you continue, they shut you out. IMO, OBSD users (many, not all), have a serious attitude problem. I found two Linux releases that can meet, even surpass OBSD -LIBERTE Linux, and EnGarde Linux (security so tight, makes OBSD look like it was written by a clown (maybe Theo IS a clown - lol)).Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-50649075335899657922012-05-22T16:34:25.487-04:002012-05-22T16:34:25.487-04:00There are some good points here; the name is OPEN ...There are some good points here; the name is OPEN BSD, so why was the audit not open? Even Theo would have to admit that the apparent secrecy is contrary to the spirit of what he espouses for security. <br /><br />One almost HAS TO ask, why the audit was done that way.<br /><br />I still see OpenBSD as a secure OS given the track record.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-44843407393016118022012-02-01T08:06:27.186-05:002012-02-01T08:06:27.186-05:00Yes, Linux. A hardened Linux is SECURE, proved by ...Yes, Linux. A hardened Linux is SECURE, proved by tests and comparison, not by "because I say so".Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-13185408917137052952011-12-27T07:51:34.466-05:002011-12-27T07:51:34.466-05:00you stupid morronyou stupid morronAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-72822514448108778592011-10-23T21:00:11.118-04:002011-10-23T21:00:11.118-04:00Let's face it. Theo is a prick who is convince...Let's face it. Theo is a prick who is convinced he is always right, everyone else is a fool, and if you don't like it, get out.<br /><br />That's why you shouldn't actually depend on OpenBSD for anything. The question isn't whether it's secure - it mostly is, and I doubt it's any worse than any other OS - but the "owner" just isn't worthy of your trust.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-34360139805748357172011-10-21T12:31:38.030-04:002011-10-21T12:31:38.030-04:00If you think that OpenBSD is backdoor'ed, why ...If you think that OpenBSD is backdoor'ed, why would you ask the person that would potentially be involved with installing the backdoor? <br /><br />If your blog post said "I audited the OpenBSD IPSec code and I found a backdoor", then your blog post would make sense and your opinion would be worth reading.<br /><br />What's the point in using OpenBSD and complaining about it if you don't even read the source code? If you can't read the source code, then you really can't and shouldn't trust ANY OS, given your logic. <br /><br />Read the source code and if you find a backdoor, you win a prize.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-12873551852665293432011-10-17T06:36:39.796-04:002011-10-17T06:36:39.796-04:00Irony. Security through obscurity is the OBSD solu...Irony. Security through obscurity is the OBSD solution. OBSD should be called CBSD.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-60429640768240870092011-10-08T05:32:12.052-04:002011-10-08T05:32:12.052-04:00Unistall OpenBSD to install Mac OSX or Linux. As a...Unistall OpenBSD to install Mac OSX or Linux. As a security related step.... Seriously ?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-86538085810472849292011-10-07T22:56:32.386-04:002011-10-07T22:56:32.386-04:00You are right. Theo's "if you don't l...You are right. Theo's "if you don't like it don't use it" reply is, in fact, not a reply. <br /><br />The issue of secure configuration was a concern I had back when I was using OBSD: however, since it shipped with everything "off" the blame-the-victim-you-fucked-it-up position absolved OBSD of any blame. But what use if OpenBSD if everything is off? The first thing anyone does with their box is turn on services. <br /><br />The nice folks at el8 complained gently that OpenBSD had some possible issues with wholesale importation of device drivers. <br /><br />Security through reputation is nice, but their claim of N holes in Y years doesn't mean much because you can't compare it to anything (or you could but they don't). <br /><br />An excellent "troll". Troll HARDER.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-14639638794492712952011-10-07T18:55:01.458-04:002011-10-07T18:55:01.458-04:00LOL !, keep your zero days for OpenBSD and go away...LOL !, keep your zero days for OpenBSD and go away right now!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-68500381460001081082011-10-05T00:09:09.775-04:002011-10-05T00:09:09.775-04:00awe did theo hurt your feelings ? .. maybe he'...awe did theo hurt your feelings ? .. maybe he's busy doing real work rather then explaining things to you ?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-29890987996701334522011-10-03T15:50:06.795-04:002011-10-03T15:50:06.795-04:00So just 'I think' 'It may' and you...So just 'I think' 'It may' and you throw it away.<br />It's really short story.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-29613075938896772472011-10-03T12:18:51.974-04:002011-10-03T12:18:51.974-04:00First anon:
How many issues with OpenBSD do you n...First anon:<br /><br />How many issues with OpenBSD do you not know about? Knowing about issues and having them fixed makes me feel better about those 3 OS's.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-30587174496334460662011-10-02T16:05:35.495-04:002011-10-02T16:05:35.495-04:00trollaxor would never troll. I suggest you check ...trollaxor would never troll. I suggest you check your facts.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-81792327848098591362011-10-02T15:26:19.387-04:002011-10-02T15:26:19.387-04:00Please don't contact me again.Please don't contact me again.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2842646859245542931.post-14843744769492628082011-10-02T06:21:08.543-04:002011-10-02T06:21:08.543-04:00You must be trolling
http://osxdaily.com/2011/09/1...You must be trolling<br />http://osxdaily.com/2011/09/19/change-password-mac-os-x-10-7-lion-without-knowing-current-password/<br />http://security.freebsd.org/advisories/FreeBSD-SA-11:05.unix.asc<br />https://lkml.org/lkml/2011/9/30/425Anonymousnoreply@blogger.com