The OpenBSD propaganda works I see...
Do you really think the tools you use like your web browser, mail client etc, have less vulnerabilities on OpenBSD than on any other BSD or linux distribution, please...
A reasonable question, but presumptuously and poorly framed, I think. Mitigation efforts like privilege separation[0] (for daemons), ASLR[1], SSP[2], and now KARL[3] are designed to make things systemically better. I'm personally a NetBSD person, and don't see that ending anytime soon, but I do appreciate the work that OpenBSD does and pay attention with interest. I expect some of their work to be ported to my environment directly, and other effects to be felt tangentially. People running different or "weird" environments is a good thing.
[0] https://en.wikipedia.org/wiki/Privilege_separation
[1] https://en.wikipedia.org/wiki/Address_space_layout_randomiza...
[2] http://wiki.osdev.org/Stack_Smashing_Protector
[3] http://undeadly.org/cgi?action=article&sid=20170613041706
And good luck with your NetBSD journey, with or without FDE. I've thoroughly enjoyed my years with it as my primary OS.
https://www.openbsd.org/innovations.html
OpenBSD was the second OS to enable W^X JIT on its firefox package, W^X being made mandatory system-wide, and in Theo de Raadt's most recent conference talk he mentions chromium being pledged. Both browsers are compiled as PIE by default.
Yes. OpenBSD employs several mechanisms that improve the security of every application e.g. W^X and stack protector.
Not only that, they were developed on linux distributions and available on them way before obsd.
