Language Selection

English French German Italian Portuguese Spanish

Allegations of OpenBSD Backdoors May be True, Updated

Filed under
Security
BSD

It was just last week that Theo de Raadt, OpenBSD founder and developer, posted an email that claimed the Federal Bureau of Investigations paid OpenBSD developers to leave backdoors in its IPSEC network security stack. Since then early audits have found some questionable code, contributors denied any wrongdoing, and the original source reaffirmed his allegations.

It'll take time to go through all the code but de Raadt said "two bugs in our cryptographic code" have already been found. "We are assessing the impact. We are also assessing the 'archeological' aspects of this," he added.

In further developments, de Raadt said yesterday that Angelos had worked on the cypto stack in question for four years when accepting a contract at NETSEC. Angelos "wrote the crypto layer that permits our ipsec stack to hand-off requests to the drivers that Jason worked on. That crypto layer ontained the half-assed insecure idea of half-IV that the US govt was pushing at that time. Soon after his contract was over this was ripped out."

full story




Yes, no or who cares?

Very interesting how this is getting played out in the public arena.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

​Red Hat buys into Docker containers with Atomic Host

Not much over a year ago, few people knew about containers, and fewer still knew about Docker. Since then, the idea of building server and applications out of container-based micro-servers, has exploded in popularity. Red Hat has been watching this and now with Red Hat Enterprise Linux 7 Atomic Host (RHELAH) the company has its own operating system/container pairing to offer the business world. Read more

VMware heads to court over GPL violations

The Software Freedom Conservancy alleges that VMware is using GPL-licensed code in its proprietary products Read more

5 awesome security features to expect in PC-BSD 10.1.2

Five of those security and security-related features were announced today and are on track to be included in the next edition, which should be PC-BSD 10.1.2. They are PersonaCrypt – a command line utility to backup a user’s home directory to an encrypted external media Tor Mode in System Updater Tray Stealth Mode in PersonaCrypt Ports now use LibreSSL by default instead of OpenSSL Support for encrypted backups in Life-Preserver utility Read more

COM Express module runs Linux on a 2.3GHz Tegra K1

Seco is prepping a Linux-friendly COM Express Type 6 Compact module with a quad-core, 2.3GHz Tegra K1 SoC and optional extended temperature support. When we covered the Nvidia Jetson TK1 single board computer last March, we didn’t realize the manufacturer was Seco. In addition to the Jetson TK1 (Seco product page here), Seco is now adding a COM Express Type 6 Compact computer-on-module called the SECOMExp-TK1, which similarly runs Linux on an Nvidia Tegra K1 SoC. Read more