Re: [m0n0wall] How / why is pfSense different from m0n0wall?

From:	"Klaus Stock" <ks at stock dash consulting dot com>
To:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] How / why is pfSense different from m0n0wall?
Date:	Wed, 14 Jun 2006 15:32:43 +0200

> > From a technical perspective, what are the various
> > pros and cons of BSD vs. Linux in the context of a
> > m0n0/pf/ipcop kind of project?
> 
> I would suggest to run *BSD on your firewall, just for
> diversity's sake. Also, the track shows *BSD has fewer
> vulnerabilities.

There is tradtionally quite some emphasis on security in the development of
BSD - unlike Linux, where you can expect security fixes every few weeks at
least (MS Windows is not safer, even thouogh security fixes are released
only once a month...MS isn't as fast as the Linux community when it comes to
fixing leaks. But still better than the Mac OS...).

Yes, it is possible to harden a Linux system to reasonable safety, but one
could as well use an OS which is reasonably safe right out of the box
already, and that appears to be BSD.

- Klaus

_________________________________________________________
This mail sent using V-webmail - http://www.v-webmail.orgg