Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
this question returning like a boomerang but any how I would like to ask for it.
If You would like to build (Build from scratch) highly secure application environment, which system will You choose as a base ? BSD or Linux ?
I`m working with Linux since many years, but I heard some really positive opinions from my other colleagues about BSD security level and possibilities. I must build highly secure environment for one single php application (nginx, php-fpm). Which system will You choose to protect access to the system ?
I will really appreciate if You will also write here the reasons, why You choosing this and not that.
If You would like to build (Build from scratch) highly secure application environment, which system will You choose as a base ? BSD or Linux ?
Have you at least done some research and read something like this, this, this or this before asking?
Also because you didn't define "highly secure" as a formal set of company, client, compliance or other criteria my reply would be "it depends". For me it doesn't matter: if a client wants RHEL then they'll pay for a RHEL license and if they want a BSD then that's what they'll get.
Quote:
Originally Posted by dlugasx
I must build highly secure environment for one single php application (nginx, php-fpm). Which system will You choose to protect access to the system?
I can not and will not choose for you. You know what you are familiar with and besides it's your responsibility anyway ;-p
Quote:
Originally Posted by dlugasx
I will really appreciate if You will also write here the reasons, why You choosing this and not that.
Have you at least done some research and read something like this, this, this or this before asking?
Also because you didn't define "highly secure" as a formal set of company, client, compliance or other criteria my reply would be "it depends". For me it doesn't matter: if a client wants RHEL then they'll pay for a RHEL license and if they want a BSD then that's what they'll get.
I can not and will not choose for you. You know what you are familiar with and besides it's your responsibility anyway ;-p
Ehh... yes, to Your information, I putted reasons why I`m thinking this way. This is my personal opinion and I`m not planning to change it. Word "crap" was to hard, if I hurt You... sorry.
To be honest, I`m not searching this what everybody can find on the internet, rather people which done some projects on the both systems - BSD and Linux.
I`m looking for some information`s/opinions about memory footprint on the both systems, network traffic filtering, security solutions like SELinux ... etc.
I don't know if you noticed: I'm a moderator here. One of the quality control things I'm concerned with is for members to provide technically sound and unbiased information. And let's make it clear "crap" just is not any of that. Understand?
Quote:
Originally Posted by dlugasx
I`m looking for some information`s/opinions about memory footprint on the both systems, network traffic filtering, security solutions like SELinux ... etc.
I don't know about you but business-wise I am accustomed to having company, client, compliance and other requirements as input to help me assess what to suggest. So that's why I asked you to start by defining "highly secure". If you don't have any then list whatever relevant project details you have got.
I don't know if you noticed: I'm a moderator here. One of the quality control things I'm concerned with is for members to provide technically sound and unbiased information. And let's make it clear "crap" just is not any of that. Understand?
I don't know about you but business-wise I am accustomed to having company, client, compliance and other requirements as input to help me assess what to suggest. So that's why I asked you to start by defining "highly secure". If you don't have any then list whatever relevant project details you have got.
Just drop that post... I already got feedback from one colleague which deployed applications on both systems.
Please do not cry so hard about the "crap"... I already said that I used bad word in the previous post and don't want to do it 1000 times.
Years has passed unSpawn bad attitude has remained.
From the LQ Rules:
Quote:
Do not post if you do not have anything constructive to say in the post.
When posting in an existing thread, ensure that what you're posting is on-topic and relevant to the thread. If the content of your post will interfere with the current discussion, you should start a new thread.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.