[PC-BSD Testing] Scary FBI Cloak & Dagger stuff possibly going on with IPSec

ruin evil ruinevil at gmail.com
Sat Dec 18 15:47:45 PST 2010


Doesn't have direct consequences for FreeBSD/PC-BSD as the IPSec stack for
BSD was derived from the KAME project. OpenBSD audits their code all the
time, so unless the contributor was very clever it erased/modified at some
point in the past 10 years.

Najiib Azad

On Sat, Dec 18, 2010 at 2:09 PM, Warner Losh <imp at bsdimp.com> wrote:

> On 12/16/2010 08:05, Arthur Koziol wrote:
>
>> On 12/15/2010 9:11 PM, Erik Saline wrote:
>>
>>> On Dec 15, 2010, at 8:18 AM, Arthur Koziol wrote:
>>>
>>>  On 12/15/2010 10:11 AM, LinuxBSDos.com wrote:
>>>>
>>>>> Just passing along a story I read just now:
>>>>>>> http://permalink.gmane.org/gmane.os.openbsd.tech/22557
>>>>>>>
>>>>>>> Arthur
>>>>>>>
>>>>>>>  Scary, but I'm not surprised.
>>>>>>
>>>>>> --
>>>>>> Fini Decima
>>>>>> http://LinuxBSDos.com
>>>>>>
>>>>>>  This has serious implications. What other free software project has
>>>>> been
>>>>> compromised in this manner?
>>>>>
>>>>> FreeBSD? Linux kernel? SELinux?
>>>>>
>>>>> When I learned back in early 2000 that the NSA was contributing SELinux
>>>>> to
>>>>> Linux, I did not think that it was a good idea for it to be accepted.
>>>>>
>>>>> Scary stuff.
>>>>>
>>>> If true, I can't image the audit trail this will have. 10 years in
>>>> computer time might not seem like much but there's going to be gobs of code
>>>> to sift through. I guess some smarty coders is going to create a toolkit
>>>> (fuzzer perhaps?) with "definitions" to detect the code, if it exists, in
>>>> other apps which may have borrowed from IPSec or code contributed by NSA et
>>>> al. Should be interesting to watch it unfold. Maybe Wikileaks will beat them
>>>> to it, ha ha.
>>>>
>>>> Arthur
>>>>
>>> Not sure if this helps.
>>>
>>>
>>>
>>> http://www.itworld.com/open-source/130820/openbsdfbi-allegations-denied-named-participant
>>>
>> The plot thickens: http://marc.info/?l=openbsd-tech&m=129244045916861&w=2
>>
>
> I think that this will all turn out to be poo.  Nothing in the initial
> email sounded the least bit credible, and nothing I've seen since then
> enhance its credibility.
>
> Warner
>
> _______________________________________________
> Testing mailing list
> Testing at lists.pcbsd.org
> http://lists.pcbsd.org/mailman/listinfo/testing
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.pcbsd.org/pipermail/testing/attachments/20101218/575ff1c8/attachment.html>


More information about the Testing mailing list