Date: Wed, 15 Dec 2010 14:03:31 +0100 From: Erik Cederstrand <erik@cederstrand.dk> To: akosela@andykosela.com Cc: freebsd-security@freebsd.org Subject: Re: Allegations regarding OpenBSD IPSEC Message-ID: <919A1DAE-2FD1-42A1-9D11-D001A116299E@cederstrand.dk> In-Reply-To: <4d08a854.w8rPywliRhHs/MXH%akosela@andykosela.com> References: <4d08a854.w8rPywliRhHs/MXH%akosela@andykosela.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Den 15/12/2010 kl. 12.36 skrev Andy Kosela: > Some of you probably already read this: > > http://marc.info/?l=openbsd-tech&m=129236621626462&w=2 > > Interesting...I wonder what is the impact of all this on FreeBSD code. > We may very well suppose that any government or corporation funded code > can theoretically have some kind of backdoor inside. That wouldn't be restricted to funded code. If somebody really wanted to place backdoors in FreeBSD, posing as NSA, FBI, KGB or whatever doesn't seem like the best option. Position a guy as a src committer instead, pretending to work alone. I'm not saying this to point fingers or spread FUD or anything like that, just that people should be careful reading any commits to catch backdoors, intentional or by mistake, regardless where they come from. Which is one thing I admire about FreeBSD - commits are actually read carefully, by many people, and frequently commented upon. Erik
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?919A1DAE-2FD1-42A1-9D11-D001A116299E>