Backdoors in OpenBSD? Reply hazy, try again
The fallout from last month's allegations that the Federal Bureau of Investigations attempted to deploy backdoors in the OpenBSD operating system are continuing to echo through developer circles, as more potential clues are unearthed. But if anything, these clues tend to muddy the answer to the key question: did the US government employ contractors to insert deliberate security holes into OpenBSD?
Former FBI cyber-crime agent E.J. Hilbert added fuel to the fire due to a Dec. 14 tweet that stated, "I was one of the few FBI cyber agents when the coding supposedly happened. Experiment yes. Success No." However, Hilbert's original meaning of the quote was initially taken as confirmation that Perry's allegations had merit. In subsequent tweets, Hilbert clarified that he was referring to the FBI's own security audits of code they were planning to deploy, a point on which he elaborated within a Dec. 15 article on ThreatPost: