http://uhden.i2p/articles/openbsd.html
It
also emphasizes secure defaults, small auditable utilities, and tight
integration between the kernel and base userland. In practice, this
tends to produce a safer system without extensive post-install
hardening. Several mechanisms and base tools commonly cited in security
discussions include: KARL (Kernel Address Randomized Link): A
technique that produces a uniquely linked kernel,...