From owner-freebsd-questions@FreeBSD.ORG  Fri Dec 17 08:28:40 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 6334A106564A
	for <freebsd-questions@freebsd.org>;
	Fri, 17 Dec 2010 08:28:40 +0000 (UTC)
	(envelope-from fullblaststorm@gmail.com)
Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com
	[209.85.212.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 173A98FC15
	for <freebsd-questions@freebsd.org>;
	Fri, 17 Dec 2010 08:28:39 +0000 (UTC)
Received: by vws9 with SMTP id 9so131458vws.13
	for <multiple recipients>; Fri, 17 Dec 2010 00:28:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:received:received:in-reply-to
	:references:date:message-id:subject:from:to:content-type;
	bh=6dwFnJUd9nGecm6qbHE1wgV9x41SDfzkmZbCbXfXpLg=;
	b=uoKlb6a3r07jKBKLt26uknfeDJY4VGPV3ul0/S96MsLBORxU5866kMWkBX+5z/c4V+
	OtT/Q4ms3lXlc3e53+O4ZyY6tNWpvmblDBXpN3R/DCpOlMrhe3mLlm4HeQ7wxGjIOayb
	ZIg8ZS4Yhwc53LMxwikra/cl6MXqFCLHHKPkk=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:content-type;
	b=TR/nyOs3MMFutoPhTBkgAmsjHxElUhnLpn4ICZaxplfRr9cvZTMkmQgPoWfSHvOrEt
	94ZJCxEsfzXcTvW6wCDR6E98yJLv5s7DNa+eeyFHqv1w63YdyKB+6EWbY7qbA0LLWOPB
	k2wDS8S4MxLhjLMA8zJ3+ZUkYWXzoL5z2gF9U=
MIME-Version: 1.0
Received: by 10.220.90.6 with SMTP id g6mr149210vcm.109.1292574517860; Fri, 17
	Dec 2010 00:28:37 -0800 (PST)
Received: by 10.220.195.72 with HTTP; Fri, 17 Dec 2010 00:28:37 -0800 (PST)
In-Reply-To: <AANLkTimQAZ5J5CB4ub7RAQZw93cKD6UxBaYa+U6M597Q@mail.gmail.com>
References: <AANLkTimQAZ5J5CB4ub7RAQZw93cKD6UxBaYa+U6M597Q@mail.gmail.com>
Date: Fri, 17 Dec 2010 14:28:37 +0600
Message-ID: <AANLkTikP-sF8RftgWE0JVbd2+w3QH2yiHZ1gQvgfCDBH@mail.gmail.com>
From: Victor Lyapunov <fullblaststorm@gmail.com>
To: security-officer@FreeBSD.org, 
	FreeBSD Mailing List <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1
Cc: 
Subject: FreeBSD IPSec stack contains backdoors?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Dec 2010 08:28:40 -0000

---------- Forwarded message ----------
From: Victor Lyapunov <fullblaststorm@gmail.com>
Date: 2010/12/15
Subject: FreeBSD IPSec stack contains backdoors?
To: FreeBSD Mailing List <freebsd-questions@freebsd.org>


Hi folks,
Recently OpenBSD developer Gregory Perry disclosed information about
possible backdoors in OpenBSD IPSec stack (see
http://permalink.gmane.org/gmane.os.openbsd.tech/22557) In particular,
Gregory Perry, who has been working on a OpenBSD -ish implementation
of IPSec says a number of backdoors have been introduced into the
code.

As far as I am aware, FreeBSD contains considerable amount of code
ported from OpenBSD. The question is: was the FreeBSD's ipsec code
ported from OpenBSD's implementation? If so, what might be the impact
of this?

Thanks,
Victor Lyapunov.