From owner-freebsd-chat  Wed May 15 22:12:37 2002
Delivered-To: freebsd-chat@freebsd.org
Received: from cain.gsoft.com.au (genesi.lnk.telstra.net [139.130.136.161])
	by hub.freebsd.org (Postfix) with ESMTP id 3B54B37B407
	for <freebsd-chat@FreeBSD.ORG>; Wed, 15 May 2002 22:12:08 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1])
	by cain.gsoft.com.au (8.12.2/8.12.2) with ESMTP id g4G5BdBh049857;
	Thu, 16 May 2002 14:41:45 +0930 (CST)
	(envelope-from doconnor@gsoft.com.au)
Subject: Re: national security backdoor in FreeBSD.
From: "Daniel O'Connor" <doconnor@gsoft.com.au>
To: Terry Lambert <tlambert2@mindspring.com>
Cc: Matthew Emmerton <matt@gsicomp.on.ca>, freebsd-chat@FreeBSD.ORG
In-Reply-To: <3CE33C1F.A547AE4D@mindspring.com>
References: <3CE295EC.6030603@cogeco.ca>
	<009c01c1fc95$74fd0470$1200a8c0@gsicomp.on.ca> 
	<3CE33C1F.A547AE4D@mindspring.com>
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
X-Mailer: Ximian Evolution 1.0.5 
Date: 16 May 2002 14:41:39 +0930
Message-Id: <1021525918.3132.0.camel@chowder.gsoft.com.au>
Mime-Version: 1.0
X-Spam-Status: No, hits=-5 required=5
X-Spam-Level:  (-5)
X-Scanned-By: MIMEDefang 2.6 (www dot roaringpenguin dot com slash mimedefang)
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-chat.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-chat>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-chat>
X-Loop: FreeBSD.org

On Thu, 2002-05-16 at 14:27, Terry Lambert wrote:
> > source.  So where do these binaries-with-no-source come from?  Oh, I know!
> > Carnivore detects FreeBSD ISO downloads, and tells the Magic Lantern
> > software on my ISP's servers to change the binaries inside the ISO images
> > that I FTP.  Makes perfect sense!
> 
> Bell Systems Technical Journal, July-August 1978, "On the Security
> of UNIX.", D. M. Ritchie.
> 
> They hacked the compiler to hack the passwd program when it was
> being compiled, and also to hack the compiler to include hacks
> to the compiler and the passwd program when the compiler itself
> was being compiled.

Chicken and egg.

If that was done then compiled code would have the same hole.

This is -chat material and thusly I have redirected it :)

-- 
Daniel O'Connor software and network engineer
for Genesis Software - http://www.gsoft.com.au
"The nice thing about standards is that there
are so many of them to choose from."
  -- Andrew Tanenbaum
GPG Fingerprint - 9A8C 569F 685A D928 5140  AE4B 319B 41F4 5D17 FDD5


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message