Linked by Thom Holwerda on Wed 15th Dec 2010 23:34 UTC, submitted by Oliver
OpenBSD Yesterday, we reported on the allegations made by Gregory Perry. He claims that 10 years ago, several developers were paid by the FBI to implement hidden backdoors into OpenBSD's IPSEC stack. This has prompted a lot of speculation about the allegations' validity, and less than 24 hours later, it has descended into one person's word against that of others. Update: Jason Wright, too, denies all the allegations. "I will state clearly that I did not add backdoors to the OpenBSD operating system or the OpenBSD crypto framework (OCF). [...] It is a baseless accusation the reason for which I cannot understand."
Permalink for comment 453800
To read all comments associated with this story, please click here.
Melicerte
Member since:
2006-08-29

Have you read Theo de Raadt anwser?

I refuse to become part of such a conspiracy, and will not be talking to Gregory Perry about this. Therefore I am making it public so that
(a) those who use the code can audit it for these problems,
(b) those that are angry at the story can take other actions,
(c) if it is not true, those who are being accused can defend themselves.

Also, please read the very end of this link:
http://marc.info/?l=freebsd-security&m=129247685124261&w=2

Reply Parent Score: 3