On Mon, Dec 30, 2002 at 02:28:47AM +0100, Hubert Feyrer wrote:
> 
> There's a nice article on this:
> 
> http://www.unixreview.com/documents/s=7459/uni1040336129456/

Apart from the "who came first" argument which they got wrong, there's

"NetBSD starts with a very minimal system.  Almost nothing is enabled
by default, which is the best way to go.  NetBSD also provides a
semi-automated (you have to set up cron jobs to do part of it)
security audit program (audit-package) that you can run on a daily
basis.  This is easy enough to install using the NetBSD Package
Collection, but I think it's a package that should be installed by
default."

which misses the point completely - you can run audit-packages as
often as you like, it's really called "audit-packages", and it checks
the integrity of installed packages on the system.  Why would anyone
want to install it on a system that has no packages on it?

I'm obviously missing something here.

Alistair