The FBI Paid OpenBSD Developers For Backdoors?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts
  • phoronix
    Administrator
    • Jan 2007
    • 67087

    The FBI Paid OpenBSD Developers For Backdoors?

    Phoronix: The FBI Paid OpenBSD Developers For Backdoors?

    Government organizations, whether they be from the United States, the European Union, or anywhere else for that matter, contributing to open-source projects is not new. Heck, Security Enhanced Linux (SELinux) in the mainline kernel can largely be attributed to the United State's National Security Agency (NSA). More organizations contributing to open-source isn't bad -- government or not -- when it's mutually beneficial work with good intentions. However, there are new allegations being made today about OpenBSD's networking stack, in particular it's IPsec code. The FBI allegedly paid OpenBSD developers to insert back-doors into the code-base...

    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
  • linux5850
    Phoronix Member
    • Aug 2010
    • 59

    #2
    SELinux is full of security holes which I'm sure is the way the NSA intended it.

    Comment

    • BlackStar
      Senior Member
      • Oct 2007
      • 2103

      #3
      Ouch. Can't say I'm terribly surprised, but ouch.

      OpenBSD is used in way too many servers, a thorough security audit must be performed ASAP (but will that be enough?)

      Comment

      • Ragas
        Senior Member
        • Jan 2010
        • 161

        #4
        What crude ethics those developers must have ...

        Comment

        • Shining Arcanine
          Senior Member
          • Mar 2010
          • 390

          #5
          The guy who sent the email had a NDA with the FBI that kept him from talking about this. Does that mean that he one of the people who implemented these backdoors?

          Comment

          • Decatf
            Phoronix Member
            • Sep 2010
            • 67

            #6
            So I guess he'll be arrested on rape charges now? >.>

            Comment

            • t.s.
              Senior Member
              • Nov 2007
              • 548

              #7
              Well, like ones said, 'with money you can buy anything.'

              ..and they said openBSD is secure

              oh well..

              Comment

              • Smorg
                Senior Member
                • Mar 2009
                • 140

                #8
                How has this been in there for a decade without anyone noticing? Where's the code they're talking about? Was this only in some proprietary fork of BSD? This whole story sounds unlikely.

                Comment

                • Apopas
                  Senior Member
                  • Mar 2009
                  • 1292

                  #9
                  IF this thing has a prossibility to be right, then imagine what happens inside the code of proprietary OSes...
                  Just the idea makes me shiver...

                  Comment

                  • xeros
                    Senior Member
                    • Aug 2007
                    • 217

                    #10
                    So, it's now time to audit more carefully Linux source code...

                    Comment

                    Working...
                    X