Language Selection

English French German Italian Portuguese Spanish

Backdoors in OpenBSD? Reply hazy, try again

Filed under
Security
BSD

The fallout from last month's allegations that the Federal Bureau of Investigations attempted to deploy backdoors in the OpenBSD operating system are continuing to echo through developer circles, as more potential clues are unearthed. But if anything, these clues tend to muddy the answer to the key question: did the US government employ contractors to insert deliberate security holes into OpenBSD?

Former FBI cyber-crime agent E.J. Hilbert added fuel to the fire due to a Dec. 14 tweet that stated, "I was one of the few FBI cyber agents when the coding supposedly happened. Experiment yes. Success No." However, Hilbert's original meaning of the quote was initially taken as confirmation that Perry's allegations had merit. In subsequent tweets, Hilbert clarified that he was referring to the FBI's own security audits of code they were planning to deploy, a point on which he elaborated within a Dec. 15 article on ThreatPost:

rest here




More in Tux Machines

10 Best Linux Business Apps

There’s no question that the Linux desktop can be a highly effective workhorse. Note, as proof of this, the greater coverage in the media of the best business apps for Linux. Keep reading for the best Linux business apps – and please add your own favorite in the Comments section below. Read more

Android Leftovers

FreeBSD-Based TrueOS 17.12 Released

The FreeBSD-based operating system TrueOS that's formerly known as PC-BSD has put out their last stable update of 2017. TrueOS 17.12 is now available as the latest six-month stable update for this desktop-focused FreeBSD distribution that also offers a server flavor. TrueOS continues using OpenRC as its init system and this cycle they have continued improving their Qt5-based Lumina desktop environment, the Bhyve hypervisor is now supported in the TrueOS server install, improved removable device support, and more. Read more

An introduction to Joplin, an open source Evernote alternative

Joplin is an open source cross-platform note-taking and to-do application. It can handle a large number of notes, organized into notebooks, and can synchronize them across multiple devices. The notes can be edited in Markdown, either from within the app or with your own text editor, and each application has an option to render Markdown with formatting, images, URLs, and more. Any number of files, such as images and PDFs, can be attached to a note, and notes can also be tagged. I started developing Joplin when Evernote changed its pricing model and because I wanted my 4,000+ notes to be stored in a more open format, free of any proprietary solution. To that end, I have developed three Joplin applications, all under the MIT License: for desktop (Windows, MacOS, and Linux), for mobile (Android and iOS), and for the terminal (Windows, MacOS, and Linux). All the applications have similar user interfaces and can synchronize with each other. They are based on open standards and technologies including SQLite and JavaScript for the backend, and Terminal Kit (Node.js), Electron, and React Native for the three front ends. Read more