... Anyway,
one more link that points the semi-fallacy that OpenBSD is magically more fundamentally secure than Linux is; it all depends on how you define your terms and how complex the system is. For a simple single-purpose router box a case can be made for it but it starts degrading rapidly once you increase the complexity of the server and start piling on third party software, and if you extend the discussion to mechanisms for enforcing per-process access controls OpenBSD is, among other things, almost completely lacking in MAC/RBAC frameworks. (SELinux, TrustedBSD, etc.) Heck, it doesn't even have FreeBSD's jails. Yes, there's the counter-arguments that those fancy-schmancy things are just more moving parts to break and that if you can keep the bastards out entirely you don't need to worry about fancy "internal" security mechanisms, good old UNIX permissions will work just fine thank you, but it's more than a little disingenuous to pretend that it's not at least an arguable point.
Now if you want to talk about how ***tty the state of system administration and security-by-design is today in the age of DevOps and cloud containers that's totally a thing worth shedding tears over, but Linux is pretty much the victim there, not the root cause. Installing software by 'curl'-ing a script into a root prompt is equally dumb no matter what you're running, but it's totally the in thing now.