My mailer thinks Matthew Cable said:
> I'm in the process of developing and building my own homebrew firewall system,
> and am looking for some educated opinions. If you were going to choose an OS
> to 'harden' to lay a firewall on, what would it be. I'm currently leaning
> towards BSDI, but want others views on this. The ideal solution would require
> little additional work to 'harden' and wouldn't cost an arm and a leg.
Rule number 1 is get one with source :-).
My personal choice is as yours BSDI. I have used SunOS (no source), Solaris, (no
source) and BSDI (full source).
On top of the ability to harden the OS with full source, BSDI has the rather
nice (IMHO) immuatbility flags. Makes the system a bitch to administer but
sure locks it up tight when you cannot write to anything.