←back to thread

OpenBSD 7.8

(cdn.openbsd.org)
282 points paulnpace | 1 comments | | HN request time: 0s | source
Show context
liendolucas ◴[] No.45666352[source]
What truly suprises me about BSDs is their simplicity and low footprint, OpenBSD being gold standard.

I've been playing with `byve` the last two weeks (I highly recommend vermaden's blog for anyone interested in BSDs and obviously the handbooks of each project) and I'm seriously thinking not doing a dual boot Linux install again. On my old x230 (which is running FreeBSD) I will be installing OpenBSD just to become more familiar with it.

I still don't get why just after installing Debian `top` shows me around 200 proceses. BSDs? Under 20. Other thing that pisses me off is for example how polluted (at least on Ubuntu) mountpoints are. Package management is also fragmented on Linux, while on BSDs is either a flavour of `pkg` or ports.

Perhaps I should still try more minimalistic Linux distributions, just don't know which are good candidates

Don't get me wrong, I love Linux and still recommend it heavily to non-tech people around me but when you taste a BSD is hard to go back.

replies(8): >>45666558 #>>45666588 #>>45666779 #>>45666839 #>>45666849 #>>45667395 #>>45669844 #>>45677290 #
hsjdjdbsbsjshsg ◴[] No.45666849[source]
Openbsd has been my router for a decade... I have a ansible playbook that does everything I need... I use a cheap USB drive in a fanless computer the only failure has been the $9 USB drive
replies(1): >>45674522 #
president_zippy ◴[] No.45674522[source]
If I had a nickel for every time my OpenBSD buddies told me "your ASUS router is not secure, just configure an OpenBSD machine as your router", I'd have a lot of nickels.

The part they never tell me is what hardware they recommend for the Wi-Fi, or rather which devices have OpenBSD driver support and allow for at least 4-5 good connections over 802.11ac?

I'm all for it, I just don't know where to start on the hardware.

replies(1): >>45678620 #
dent9 ◴[] No.45678620[source]
You've got this wrong my friend. You don't use Wi-Fi on a router. You get a separate Wi-Fi Access Point device for that. I use a fanless Intel N100 2.5Gb x4 port system from AliExpress as the router with OpnSense and a Ubiquity Wi-Fi 7 access point for the wireless.
replies(2): >>45678728 #>>45684567 #
1. president_zippy ◴[] No.45684567[source]
I think I get what you're implying. As long as the router itself with its firewall + DNS + NAT, is secure from attacks by actors over there internet, the access point I will connect to it only needs to be secure against people within 100 feet of it.

My only concern here is configuring an access point to just be a dumb antenna that xmits/recvs and AES encrypts/decrypts ethernet packets from a handful of MAC addresses without doing NAT or any other additional processing of those packets. The concerns my OpenBSD buddies have about the software on ASUS routers is well-founded, but I don't think any of us is sufficiently versed in layer 2 security.

What's the extent of your expertise in layer 2? I would rest easy as long as my router and access point are not willy-nilly giving away my MAC addresses to fine institutions like this place.