It's not necessarily that OpenBSD *can't* implement the basics, it's that they d... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		seanw444 13 days ago \| parent \| context \| favorite \| on: Moving from OpenBSD to FreeBSD for firewalls It's not necessarily that OpenBSD can't implement the basics, it's that they don't want to. A lot of the high-performance features introduce potential security vulnerabilities. Their main focus is security and correctness. Not speed.

Terr_ 13 days ago [–]

> A lot of the high-performance features introduce potential security vulnerabilities.

I am particularly-reminded of speculative execution optimizations allowing attacks like Spectre and Meltdown in 2017.

https://en.wikipedia.org/wiki/Transient_execution_CPU_vulner...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact