Language Selection

English French German Italian Portuguese Spanish

Allegations of OpenBSD Backdoors May be True, Updated

Filed under

It was just last week that Theo de Raadt, OpenBSD founder and developer, posted an email that claimed the Federal Bureau of Investigations paid OpenBSD developers to leave backdoors in its IPSEC network security stack. Since then early audits have found some questionable code, contributors denied any wrongdoing, and the original source reaffirmed his allegations.

It'll take time to go through all the code but de Raadt said "two bugs in our cryptographic code" have already been found. "We are assessing the impact. We are also assessing the 'archeological' aspects of this," he added.

In further developments, de Raadt said yesterday that Angelos had worked on the cypto stack in question for four years when accepting a contract at NETSEC. Angelos "wrote the crypto layer that permits our ipsec stack to hand-off requests to the drivers that Jason worked on. That crypto layer ontained the half-assed insecure idea of half-IV that the US govt was pushing at that time. Soon after his contract was over this was ripped out."

full story

Yes, no or who cares?

Very interesting how this is getting played out in the public arena.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines Website Says Microsoft's Software Is Malware has a category on its website named “Philosophy of the GNU Project,” where the Microsoft software is described as malware, along with Apple and Amazon. Read more

Ubuntu Touch Devs Might Release an OTA-8.5 Hotfix Update for Ubuntu Phones

Earlier today, November 25, Canonical's Łukasz Zemczak sent his daily report for the day of November 24, 2015, informing all Ubuntu Phone users about the latest work done by the Ubuntu Touch developers on the Ubuntu for phones operating system. Read more

Systemd — unit dependencies and order

Welcome back to our continuing series on systemd features. As you’ve guessed from our previous articles, systemd brings more power and flexibility to service startup and management. One of the most important changes in systemd from legacy SysVinit is how it starts up units. You may have heard from casual users that systemd starts everything together. Some people believe this is true, and that’s why the system starts faster. But the reality is not quite that simple. Let’s look a little more deeply at how systemd understands unit relationships. Read more

today's leftovers

  • AWS launches EC2 Dedicated Hosts so you can bring your own Linux licence
    AMAZON WEB SERVICES (AWS) has announced the arrival of a new service called EC2 Dedicated Hosts. The new feature will allow companies to run the software they pay for on multiple virtual machines using a single server, giving more granular management to finding what applications are working on what virtual machine. AWS has outlined the advantages of EC2 Dedicated Hosts in a blog post by evangelist Jeff Barr.
  • Unikernels, meet Docker!
    The demo described here is just the beginning. There are many implementations of unikernels and there’s plenty of work ahead to ensure they can all reap the benefits of integration, as well as improving Docker itself to make the most of these new technologies. Look over the collection of unikernel projects and contribute your experiences to this blog!
  • AMD Radeon Software Crimson Edition Is A Letdown On Linux
    While leaked slides indicate AMD was planning better gaming on Linux for Crimson, in the end they really didn't deliver. Even for their mentioned games, when testing various Linux OpenGL games on three different systems the performance was largely unchanged.
  • New HPCG Benchmark List Goes Beyond LINPACK to Compare Supercomputers
    The High Performance Conjugate Gradients (HPCG) Benchmark list was announced this week at SC15. This is the fourth list produced for the emerging benchmark designed to complement the traditional High Performance LINPACK (HPL) benchmark used as the official metric for ranking the TOP500 systems. The first HPCG list was announced at ISC’14 a year and a half ago, containing only 15 entries and the SC’14 list had 25. The current list contains more than 60 entries as HPCG continues to gain traction in the HPC community.
  • New Opera 34 Beta Is Based on Chromium 47.0.2526.58, Brings Linux and Mac Fixes
    Opera Software, through Aneta Reluga, has announced the release and immediate availability for download and testing of a new Beta build for the upcoming Opera 34.0 web browser for all supported operating systems, including GNU/Linux, Mac OS X, and Microsoft Windows.
  • Hamster rediscovered
    If you like to track your time in a fine granular way, consider to use project-hamster with the GNOME Shell extension.
  • Distro hopping: feeling good with my time on LXLE
    Well the time has come to officially switch off from LXLE. This time around however I find myself in a weird spot. I’ve honestly struggled with LXLE; not in using the distribution itself but rather coming up with things to write about it. That isn’t to say that LXLE is bad by any stretch of the imagination, in fact it is quite good, it’s just that once you get used to the light weight desktop environment (DE) there is a perfectly capable “heavy weight” distribution underneath. What I mean by this is that once you get used to the DE and it fades into the background you’re left with a perfectly functional distribution that could just as easily have been Ubuntu or Linux Mint or Fedora or {insert your favourite one here}.
  • Netrunner 17 'Horizon' is here -- download the Kubuntu-based Linux distro now
    About a week ago, the Netrunner team released an update to its rolling release operating system. Based on Arch/Manjaro, I advised Linux beginners to steer clear, and instead opt for the Kubuntu-based variant. There are a couple of reasons for this. For one, the Ubuntu community is arguably friendlier and better for newbies -- there are a ton of instructions and .deb files available too. More importantly, however, the rolling release could be less stable overall.
  • Netrunner 17 Screenshot Tour
  • KNOPPIX 7.6.0 Screenshot Tour
  • Tumbleweed install for November
    For this month, I installed Tumbleweed on my laptop. I had installed Leap 42.1 to overwrite my previous Tumbleweed install on that laptop. This computer uses legacy booting. I gave Tumbleweed a 40G partition, which I formatted as “ext4”. I also allowed it to use the swap and home file systems from my encrypted LVM on that computer.
  • Python 3 Porting FAD: Lessons Learned
  • Fossetcon 2015 Orlando Florida – Lake Buena Vista Hilton 19 – 21 November 2015
  • Reproducible builds: week 30 in Stretch cycle