On Tue, Dec 30, 2008 at 12:23:59PM +0100, Henning Brauer wrote: > * Douglas A. Tutty <dtu...@vianet.ca> [2008-12-30 02:39]: > > > crappy applications are still crappy applications on OpenBSD, but > > > worse on pretty much any other OS. > > IIUC, with ports right now, to get security fixes you have to run > > current and then you end up getting the latest verions of the upstream > > the lack of -stable ports/packages is indeed very sad. > > > With this in mind, is it still a safe or fair assumption that if you > > only want a box that does web browsing in the most secure mode possible > > (for a web browsing box), lets say for something like internet banking, > > is OpenBSD + Firefox from ports going to be more secure than e.g. Debian > > base + Iceweasel (their off-brand Firefox)? > > I'd use the OpenBSD/ff combo over whateverlinux/ff any time, even if > the ff on OpenBSD is older, yes.
Is it older? If its older with backported bug fixes, fine. However, if ff has a big security bug found that, e.g. lets some remote yahoo read your local files, can anything on openbsd mitigate that security hole? Doug.
