OpenBSD laughs at your puny kernel security measures.
And HardenedBSD aims to implement them. ;)
But seriously, some really cool technologies coming from both OpenBSD and grsec. I’m excited to see how RAP works in production.
Quietly in the corner. scnr
It’s nice to rant about a systems shortcomings from a different position, but improving the security of Linux even by a tiny bit will have a huge impact because of its current adoption.
I agree to an extent. Improvements are always a good thing. But the majority of improvements won’t see the light of day on existing Linux deployments. Just think of the millions of Android devices running old kernels with no chance of being updated. Only new deployments will see the improvements.
Sure, an earlier focus on security would have been strictly preferable. Standing on the sidelines and pointing fingers doesn’t help much in any case, though.
Agreed, though those same devices are a bit safer because OpenBSD developers had a different approach with their libc which is used on Android devices.
I agree it’s sad that existing devices won’t gain any benefits but I’m more afraid of new places where people will shove a Linux kernel in. That wifi enabled sniper rifle still gives me the chills.
I think that the billion of android devices will eventually get replaced by new models. Currently it takes about 4-5 years for a firmware revision to become marginal. And I also don’t see the new sales slowing down.
So, I don’t think that it matters when there is so much potential to improve things for the future.