"Quote from: OPNenthu on February 14, 2025, 01:44:59 AMI'm biased toward bare metal for security and performance.Thanks for sharing your insight into security and performance when using bare metal! The points you raise about attack surface, error management, and risk from dependencies are really worth considering. Your input is greatly appreciated!
- Smaller overall attack surface
- Single source of bugs and bug fixes rather than multiple (no dependency on Proxmox & Debian in addition to OPNsense & FreeBSD)
- No "noisy neighbor" VMs sapping performance
- Some router manufacturers now ship coreboot as an option to mitigate e.g. supply chain key leak issues and Intel ME backdoors
-- although you are now shifting trust from A to B, you are making a bet that B carries less overall risk Block Blast
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
General Discussion / Re: Pros and Cons of bare metal versus virtualization home environment
March 10, 2025, 10:11:21 AM #2
Intrusion Detection and Prevention / Re: Duplicate/invalid rules
March 10, 2025, 08:42:21 AMQuote from: guenti_r on January 09, 2025, 12:07:12 PMThis issue shows up when the etpro-telemetry & os-intrusion-detection-content-et-open is installed and the etpro-sensor is switched to et_open because of connectivity issues.Thanks for pointing that out! It makes sense that having two different et-open sets could cause issues.
So you have two different et-open sets.
See https://forum.opnsense.org/index.php?topic=45112.0 Love Pawsona
Pages1
