At one point, on a mailing list, someone pointed out a recent (at the time) OpenBSD security fix that fixed a problem that had never been in the original *BSD source tree.
I mentioned this. I got flamed by Theo for spouting FUD. I quoted the original message, including the specific pointer to the specific bug. I never heard back.
I'm not really convinced it's all that much more secure. I hear a lot of things that have the sound of FUD to them; I don't see a lot of solid, empirical, evidence.
Curiously, someone told me never to say anything like this in public, or people will attack my machines to show me how important security is. Well, if they do, it does send a message, but the message is "we need to get rid of assholes", not "security is important".
Something I thought was weird... (Score:1)
I mentioned this. I got flamed by Theo for spouting FUD. I quoted the original message, including the specific pointer to the specific bug. I never heard back.
I'm not really convinced it's all that much more
secure. I hear a lot of things that have the sound of FUD to them; I don't see a lot of solid, empirical, evidence.
Curiously, someone told me never to say anything like this in public, or people will attack my machines to show me how important security is. Well, if they do, it does send a message, but the message is "we need to get rid of assholes", not "security is important".
:)