Aaron Poffenberger

OpenBSD ships "secure by default" meaning that many services ship disabled, are configured with limited access, run in chroot(8) jails or any combination of the three. In this section we'll look at these and other ways OpenBSD ships "secure by default."

We'll look at chroot(8) first.