Linked by Thom Holwerda on Tue 14th Dec 2010 23:55 UTC, submitted by Oliver
OpenBSD Okay, this is potentially very big news that really needs all the exposure it can get. OpenBSD's Theo de Raadt has received an email in which it was revealed to him that ten years ago, the FBI paid several open source developers to implement hidden backdoors in OpenBSD's IPSEC stack. De Raadt decided to publish the email for all to see, so that the code in question can be reviewed. Insane stuff.
Thread beginning with comment 453679
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: ipsec
by Lennie on Wed 15th Dec 2010 14:05 UTC in reply to "ipsec"
Lennie
Member since:
2007-09-22

The email hasn't even been confirmed yet. It is really easy to spoof an email.

Reply Parent Score: 2

RE[2]: ipsec
by Oliver on Wed 15th Dec 2010 14:12 in reply to "RE: ipsec"
Oliver Member since:
2006-07-15
RE[3]: ipsec
by Valhalla on Wed 15th Dec 2010 14:34 in reply to "RE[2]: ipsec"
Valhalla Member since:
2006-01-24



The 'covert backdoors in firmware-based systems.' is a nasty proposition which he mentioned working on in his reply. All these firmware blobs that can't be audited in any way.

Reply Parent Score: 2

RE[3]: ipsec
by Lennie on Wed 15th Dec 2010 17:25 in reply to "RE[2]: ipsec"
Lennie Member since:
2007-09-22

OK, now the next question is, is the guy nuts or is it for real ? :-)

Reply Parent Score: 2

RE[3]: ipsec
by dhartmei on Wed 15th Dec 2010 17:59 in reply to "RE[2]: ipsec"
dhartmei Member since:
2010-12-15

The OCF was a target for side channel key leaking mechanisms, as well as pf (the stateful inspection packet filter), in addition to the gigabit Ethernet driver stack for the OpenBSD operating system;

How is that possible? According to his statement, this took place circa 1999, before he left in 2000.

pf didn't exist before June 2001, the IPFilter license dispute was in May 2001.

Reply Parent Score: 1