Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

OpenBSD don't even have security advisories like most other distros have. [1]

So I'd argue it's impossible to build a correct threat model if all your vulnerabilities are expressed on code-level, rather than on "what software" or "what packages" are affected by it.

[1] https://www.openbsd.org/errata73.html



Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: