Comment Package security? (Score 2, Interesting) 235
For a distro that prides itself on proactive security, OpenBSD seems to lack one security feature most mainline Linux distributions have: some form of package signing. I know package signing doesn't make a system 100% percent secure from Trojan'ed applications. I'm not a security expert, but I think having signed packages helps reduce the possibility of man-in-the-middle attacks, say, from malicious DNS redirection that points the user to a bogus mirror even if the "real" mirror (which presumably is running a secure BSD system) isn't compromised.
It seems to me the most secure OpenBSD system is one without anything besides the base system installed, good enough for a server, but unfortunately not for everyday Desktop use in Facebook era.