From owner-freebsd-hackers  Wed May 15 23:53: 8 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from HAL9000.wox.org (12-232-222-90.client.attbi.com [12.232.222.90])
	by hub.freebsd.org (Postfix) with ESMTP id CE09937B401
	for <freebsd-hackers@FreeBSD.ORG>; Wed, 15 May 2002 23:53:00 -0700 (PDT)
Received: (from das@localhost)
	by HAL9000.wox.org (8.11.6/8.11.6) id g4G6rIs59414;
	Wed, 15 May 2002 23:53:18 -0700 (PDT)
	(envelope-from das)
Date: Wed, 15 May 2002 23:53:18 -0700
From: David Schultz <dschultz@uclink.Berkeley.EDU>
To: Poul-Henning Kamp <phk@critter.freebsd.dk>
Cc: Terry Lambert <tlambert2@mindspring.com>,
	Matthew Emmerton <matt@gsicomp.on.ca>, freebsd-hackers@FreeBSD.ORG
Subject: Re: national security backdoor in FreeBSD.
Message-ID: <20020515235318.A59387@HAL9000.wox.org>
Mail-Followup-To: Poul-Henning Kamp <phk@critter.freebsd.dk>,
	Terry Lambert <tlambert2@mindspring.com>,
	Matthew Emmerton <matt@gsicomp.on.ca>, freebsd-hackers@FreeBSD.ORG
References: <3CE33C1F.A547AE4D@mindspring.com> <30546.1021526684@critter.freebsd.dk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <30546.1021526684@critter.freebsd.dk>; from phk@critter.freebsd.dk on Thu, May 16, 2002 at 07:24:44AM +0200
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

Thus spake Poul-Henning Kamp <phk@critter.freebsd.dk>:
> In message <3CE33C1F.A547AE4D@mindspring.com>, Terry Lambert writes:
> >Matthew Emmerton wrote:
> >> > There is a backdoor in all versions of FreeBSD that are not compiled
> >> > from source code within portmapper and telnetd.
> >> 
> >> Hmm.  Let's check out this logic.  The binaries that ship on the FreeBSD
> >> distros are compiled from source.  When I upgrade my system, I compile from
> >> source.  And the backdoor only exists in binaries that are not compiled from
> >> source.  So where do these binaries-with-no-source come from?  Oh, I know!
> >> Carnivore detects FreeBSD ISO downloads, and tells the Magic Lantern
> >> software on my ISP's servers to change the binaries inside the ISO images
> >> that I FTP.  Makes perfect sense!
> >
> >Bell Systems Technical Journal, July-August 1978, "On the Security
> >of UNIX.", D. M. Ritchie.
> >
> >They hacked the compiler to hack the passwd program when it was
> >being compiled, and also to hack the compiler to include hacks
> >to the compiler and the passwd program when the compiler itself
> >was being compiled.
> 
> Sigh.
> 
> Wrong reference.
> 
> That was from Brians ACM Turning award thankyou-presentation.

http://www.acm.org/classics/sep95/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message