Slashdot Mirror

← Back to Stories (view on slashdot.org)

CIS Releases FreeBSD Security Benchmark

Posted by michael on from the keeping-honest-people-honest dept.

JohnnyDime writes "The Center for Internet Security (CIS) has released a security benchmark and auditing tool for FreeBSD versions 4.8 and later. This is a free download available from cisecurity.org. CIS is a non-profit, consensus driven organization that uses experts from the public, private, and academic sectors to develop security guidance for operating systems and applications."

44 comments

  1. Heh by setagllib · · Score: 5, Insightful

    Not that it needs one ;)

    But more proof that BSD is not dead. It gets support from the companies that know what they're doing.

    Just you wait for 5.3-RELEASE!

    --
    Sam ty sig.
    1. Re:Heh by sp0rk173 · · Score: 5, Insightful

      And just YOU wait until the VFS system in DragonFly finishes it's top-to-bottom re-write! I have a feeling this new BSD isn't going to be something to sneeze at. I've been following the kernel@ mailing list, and it sounds damn awesome. It's going to be one hell of a beautiful little OS. Let's hope it runs as beautifully as it sounds on paper when all is coded and done.

    2. Re:Heh by SillyNickName4me · · Score: 4, Interesting

      That is nice... lets see when there is a result (have seen enough results from the people involved in Fragonfly, so that was not intended as a cynical statement, just as a huint that only what exists today can be used today)

      Anyway, unlike what some people believe, this kind of competition between different BSD distributions is a good thing, it allows people to go their own way with their ideas, and after a while all BSDs get a better solution (if the idea turned out to be better that is)

    3. Re:Heh by Anonymous Coward · · Score: 1

      I know that Dragonfly kernel is based off of FreeBSD 4.x , but is the userland going to reflect 4.x or 5.x? Things in 5.x are layed out in a near perfect Unix hieararchy IMHO, I'd hate to go back to the 4.x layout =/

    4. Re:Heh by Anonymous Coward · · Score: 0

      just try the live cd if you want a hint how it works

  2. Re:It is official -- Netcraft confirms: *BSD is dy by ToasterTester · · Score: 5, Funny

    The same guy keeps cutting and pasting the same message over and over. Just the number of times he's posted it is proof FreeBSD is not dead.

    Linus, will you please stop posting this.


    FACT: Chuckie Daemon will not die!

  3. Re:seriously by Anonymous Coward · · Score: 2, Informative

    Hmmm...

    Yahoo.com

    Fark.com

    Generally, clueful people.

  4. Re:seriously by stox · · Score: 0, Offtopic

    What truly intelligent person isn't? ;->

    --
    "To those who are overly cautious, everything is impossible. "
  5. BSD is NOT dying. HPUX is. by alphaque · · Score: 4, Interesting

    hmm, oddly the HTML title and title bar both say "Benchmarks for HPUX". :)

    see the link above at http://www.cisecurity.org/bench_freebsd.html

  6. Re:seriously by frickenhell · · Score: 0, Offtopic

    I use FreeBSD 5.2.1 flawlessly on my Dell Inspiron 8200. The ports systems is way cool.

    If I have to use Linux then it must be Debian. Package management is the key.

  7. Re:It is official -- Netcraft confirms: *BSD is dy by endx7 · · Score: 4, Informative

    FACT: his name is not Chuck, or Chuckie or anything like that. If you must give him a name, call him Beastie.

    At least, I think it is a him.

  8. Re:seriously by Anonymous Coward · · Score: 0

    If I have to use Linux I would use Mandrake better than Debian.
    Package management is the key and (here is my strongest point) it has a way cooler logo !

  9. Re:seriously by Ezdaloth · · Score: 2, Funny

    Actually it's 4, i use FreeBSD too.

  10. What's in a name? by JamesTRexx · · Score: 5, Funny

    Aren't we supposed to call it our new overlord?

    --
    home
  11. Re:Read carefully. by SillyNickName4me · · Score: 3, Insightful

    Hmm... offtopic? more like troll.. and for once a somewhat funny one ;)

  12. Re:It is official -- Netcraft confirms: *BSD is dy by agraupe · · Score: 2, Funny
    FACT: Chuckie Daemon will not die!
    # kill -9 `pidof chuckie`
  13. Re:It is official -- Netcraft confirms: *BSD is dy by Anonymous Coward · · Score: 0

    > FACT: Chuckie Daemon will not die!
    > # kill -9 `pidof chuckie`

    This is ironic. pidof is linuxism. The only BSD you can kill is in your own fantasy world...

    % pidof
    pidof: Command not found.
    %

    Try :
    # killall -9 chuckie
    No matching processes were found
    #

  14. Re:seriously by torstenvl · · Score: 0, Troll

    Debian's package management is technologically superior to Mandrake's. dpkg/dselect are way more flexible and powerful. But the ports system is way better. That's why true Linux afficiandos who don't use Debian use Gentoo -- portage is based on the FreeBSD ports system. The only thing is that there isn't a simple, one-size-fits-all graphical interface to all that AFAIK.

    PS -- I'm #5!

  15. Re:It is official -- Netcraft confirms: *BSD is dy by Anonymous Coward · · Score: 0

    Won't work if "Chuckie" is on disk. (has the D flag in ps). If this happens, the system won't let it die until it comes out of being on disk.

  16. Re:Read carefully. by cant_get_a_good_nick · · Score: 0, Offtopic

    this ad looks like they cribbed from Stallman

  17. Re:seriously by Anonymous Coward · · Score: 0

    Based on ?
    At least one example ?

    by the way urpm has a great GUI tool too (rpmdrake).

  18. Re:It is official -- Netcraft confirms: *BSD is dy by Anonymous Coward · · Score: 1

    killall doesn't work on all the BSD's. I am not positive on NetBSD, but I know that killall does not exist on OpenBSD.

  19. Re:It is official -- Netcraft confirms: *BSD is dy by 680x0 · · Score: 1
    It's not on NetBSD... at least any of the versions I have:
    • 1.6/sparc
    • 1.6.2/sparc
    • 1.6.2/sparc64
    • 1.6.2/x86
  20. Re:It is official -- Netcraft confirms: *BSD is dy by okeby235 · · Score: 2

    I have a feeling he is referring to the "Charlie Root" that the root account uses as its full name.

  21. Re:seriously by Anonymous Coward · · Score: 0

    Ooops, it's 3 again. I just switched to Mandrake. Couldn't take FreeBSD no more. Sorry, pals.

  22. Re:seriously by Anonymous Coward · · Score: 0

    No one who uses Debian actually uses low-level programs like dpkg/dselect. People use much simpler and automatic apt-* . These are superior to everything else in any other distribution (that is not a clone of Debian). FreeBSD is about 20 years behind here.

  23. Re:seriously by torstenvl · · Score: 3, Interesting

    Troll? WTF. I'm tired of Moderators with axes to grind.

    Debian's package management IS technologically superior to Mandrakes. Period. It's more flexible and more powerful. In Mandrake there is no way to 'purge' a package -- getting rid of the original package contents and configuration files that were generated therewith and essentially making your system as though that package were never there. There is also no way to set up different dependency levels, hence the complaints about Mandrake being 'bloated' with unnecessary dependencies -- RPM doesn't provide a way to make optional dependencies. It just doesn't.

    Ports/Portage is more flexible yet, as you can specify compiler flags with -DWHATEVER in Ports or with USE flags in Portage. I use this feature very frequently, for example so I can install JED without needing to install X11 first. A 'purge' feature would be nice here too, but I guess the whole premise is that you're supposed to be familiar enough with your system using Gentoo or FreeBSD that you can decide to keep or remove configs and so on anyway. That, and Gentoo has its etc-update thing, which is handy.

    There. I've backed up my opinions. If you Mod me down for saying things I have objective evidence for, well, you can just lick my salty nuts.

  24. Re:seriously by Anonymous Coward · · Score: 0

    When you have 200-500 packages installed on your system, being "familiar enough with your system" becomes a challenge to put it mildly. That's why Debian's automatic system is by far superior to the competition.

    Posting anonymoustly, because it's obvious that BSD trolls with mod points aren't going to like this.

  25. Re:seriously by NuclearDog · · Score: 1

    Quite all right. I run it on several machines (both desktop & server), so I more than make up for the one lost user.

    ND

    --
    This statement is forty-five characters long.