The Glade 4.0 • View topic - FBI backdoor'd OpenBSD's IPSEC implementation?

View unanswered posts | View active topics

Board index » The Glade » Hellfire

All times are UTC - 6 hours [ DST ]

FBI backdoor'd OpenBSD's IPSEC implementation?

Page 1 of 1

[ 6 posts ]

Print view

Previous topic | Next topic

Author

Message

Stathol

Post subject: FBI backdoor'd OpenBSD's IPSEC implementation?

Posted: Tue Dec 21, 2010 7:54 pm

Lean, Mean, Googling Machine

Joined: Thu Sep 03, 2009 9:35 am
Posts: 2903
Location: Maze of twisty little passages, all alike

Is anyone else following this train wreck?

Short version:

Former CTO of NSA consultant firm emails chief architect of OpenBSD with accusation that 10 years ago, FBI paid specific developers (by name) to subtly undermine and backdoor OpenBSD's IPSEC implementation. Hilarity and code audits ensue.

Personally, I'm leaning towards Perry being a nutjob, but still ... at the very least, his tinfoil is unusually shiny. Everyone specifically fingered has, of course, denied the allegations in their entirety. And now we've got a former FBI agent (E. J. Hilbert) tweeting in on the whole affair (tweeting, I say!). On one hand, he denies Perry's specific claims. On the other hand, well ... there's this:

Quote:

I was one of the few FBI cyber agents when the coding supposedly happened. Experiment yes. Success No.

Ugh. Somehow I'm not reassured.

But I suppose that's hardly any surprise. At the time, the three letter agencies were publicly lobbying for strong crypto software to be backdoored and/or key escrowed for ~~spying~~ law-enforcement purposes. That didn't work out too well for them, so I guess the rest is pretty predictable. At least he seems to be implying that OpenBSD (maybe other OSS as well?) were resistant to this kind of attack.

I swear, this is freaking _NSAKEY all over again.

_________________
Sail forth! steer for the deep waters only!
Reckless, O soul, exploring, I with thee, and thou with me;
For we are bound where mariner has not yet dared to go,
And we will risk the ship, ourselves and all.

Top

Midgen

Post subject:

Posted: Tue Dec 21, 2010 8:22 pm

Joined: Thu Sep 03, 2009 3:08 am
Posts: 6465
Location: The Lab

You sound surprised?

Top

Arathain Kelvar

Post subject:

Posted: Tue Dec 21, 2010 9:54 pm

Joined: Fri Sep 25, 2009 8:22 pm
Posts: 5716

Stathol:

What?

Top

Midgen

Post subject:

Posted: Tue Dec 21, 2010 10:00 pm

Joined: Thu Sep 03, 2009 3:08 am
Posts: 6465
Location: The Lab

Someone is claiming that the FBI secretly paid developers to build a 'back door' in the protocol that the majority of encrypted VPN (Virtual Private Network) tunnels are built on, in the OpenBSD operating system.

Top

Hannibal

Post subject:

Posted: Wed Dec 22, 2010 7:50 am

Has a plan

Joined: Fri Sep 04, 2009 2:51 pm
Posts: 1584

Wouldn't suprise me to be honest.

_________________
A man who has nothing for which he is willing to fight, nothing which is more important than his own personal safety, is a miserable creature and has no chance of being free unless made and kept so by the exertions of better men than himself. ~ John Stuart Mill

Top

Midgen

Post subject:

Posted: Fri Dec 24, 2010 10:24 pm

Joined: Thu Sep 03, 2009 3:08 am
Posts: 6465
Location: The Lab

It doesn't surprise me that someone made the claim.

It wouldn't surprise me if it were true (although some things about the nature of his claim make me dubious)

It wouldn't surprise me if the 'tried and failed' thing were true either...

It would surprise me if this were actually successfully implemented, and actually successfully USED by anyone ever.

Top

Page 1 of 1

[ 6 posts ]

Board index » The Glade » Hellfire

All times are UTC - 6 hours [ DST ]

Who is online

Users browsing this forum: No registered users and 273 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum