From owner-freebsd-questions@FreeBSD.ORG Fri Dec 17 09:31:45 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CE7681065672 for ; Fri, 17 Dec 2010 09:31:45 +0000 (UTC) (envelope-from keramida@ceid.upatras.gr) Received: from igloo.linux.gr (igloo.linux.gr [62.1.205.36]) by mx1.freebsd.org (Postfix) with ESMTP id 358B08FC1A for ; Fri, 17 Dec 2010 09:31:44 +0000 (UTC) X-Spam-Status: No X-Hellug-MailScanner-From: keramida@ceid.upatras.gr X-Hellug-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-2.9, required 5, autolearn=not spam, ALL_TRUSTED -1.00, BAYES_00 -1.90) X-Hellug-MailScanner: Found to be clean X-Hellug-MailScanner-ID: oBH9VRJ7005156 Received: from gkeramidas-glaptop.linux.gr ([74.125.57.36]) (authenticated bits=0) by igloo.linux.gr (8.14.3/8.14.3/Debian-9.4) with ESMTP id oBH9VRJ7005156 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 17 Dec 2010 11:31:33 +0200 From: Giorgos Keramidas To: Victor Lyapunov References: Date: Fri, 17 Dec 2010 10:31:26 +0100 In-Reply-To: (Victor Lyapunov's message of "Fri, 17 Dec 2010 14:28:37 +0600") Message-ID: User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.0.50 (gnu/linux) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" Cc: security-officer@freebsd.org, FreeBSD Mailing List Subject: Re: FreeBSD IPSec stack contains backdoors? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Dec 2010 09:31:45 -0000 --=-=-= Content-Type: text/plain The FreeBSD security officer team has already written an official response about this. Please have a look at: http://lists.freebsd.org/pipermail/freebsd-security/2010-December/005746.html Regards, Giorgos On Fri, 17 Dec 2010 14:28:37 +0600, Victor Lyapunov wrote: > ---------- Forwarded message ---------- > From: Victor Lyapunov > Date: 2010/12/15 > Subject: FreeBSD IPSec stack contains backdoors? > To: FreeBSD Mailing List > > Hi folks, > Recently OpenBSD developer Gregory Perry disclosed information about > possible backdoors in OpenBSD IPSec stack (see > http://permalink.gmane.org/gmane.os.openbsd.tech/22557) In particular, > Gregory Perry, who has been working on a OpenBSD -ish implementation > of IPSec says a number of backdoors have been introduced into the > code. > > As far as I am aware, FreeBSD contains considerable amount of code > ported from OpenBSD. The question is: was the FreeBSD's ipsec code > ported from OpenBSD's implementation? If so, what might be the impact > of this? > > Thanks, > Victor Lyapunov. --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk0LLe8ACgkQ1g+UGjGGA7agNwCgmK3V+74BIO6gqwspzxepbh+O flsAnjVuyTdMtcPkDrZkxW1LICYz7JKP =xvmn -----END PGP SIGNATURE----- --=-=-=--