In some mail from Harish Pillay, sie said:
>
> > Politely, and IMHO, it's *very* dangerous to use any OS on your firewall
> > which is freeware or which has it's source easily available.
>
> I fail to understand why a free OS and comes with source code is dangerous.
> If anything, it can be tweaked very quickly and easily by the sysadmin
> instead of depending on others. I would favour such OS more than others.
And if you ever leave your current employment situation ?
If there are local experts on site who can exploit having source code
available to them (effectively) then it can be a good thing. But if you
leave, or someone else in a similar situation leaves their job, for
whatever reason, it may be hard to effect a suitable replacement.
Not to forget, you have to know what to tweak, before you tweak it. If
I gave you a FreeBSD box, or maybe a box running hurd, and asked you to
close all the security holes, would it be any more effective than doing
the same on a bin-only distribution ?
>From my observation of the scene, it would seem that we all depend on
others, just in different ways if we have source code rather than a binary
only distribution.
Darren
References:
|
|
