Language Selection

English French German Italian Portuguese Spanish

OpenBSD backdoor claims: bugs found during code audit

Filed under
Security
BSD

The OpenBSD project has found two bugs during an audit of the cryptographic code in which, it has been alleged, the FBI, through former developers, was able to plant backdoors.

OpenBSD project head Theo de Raadt told iTWire: "We've been auditing since the mail came in! We have already found two bugs in our cryptographic code. We are assessing the impact. We are also assessing the 'archeological' aspects of this.."

The mail he was referring to was sent to him on December 11 by Gregory Perry, a former developer with the project, and claimed that the US Federal Bureau of Investigation had, through some other ex-developers, implemented a number of backdoors in the open cryptographic framework used in OpenBSD.

De Raadt decided to go public with the mail, posting it to the openbsd-tech mailing list, along with his own comments.

rest here




More in Tux Machines

Open-source project promises easy-to-use encryption for email, instant messaging and more

Called "Pretty Easy Privacy" (PEP), the project's goal is to integrate the technology with existing communication tools on different desktop and mobile platforms. The development team launched a preview PEP implementation Monday for the Microsoft Outlook email client, but plans to build similar products to encrypt communications in Android, iOS, Firefox OS, Thunderbird, Apple Mail, Jabber, IRC (Internet Relay Chat), WhatsApp, Facebook Messenger, Snapchat and Twitter. Read more

Samsung Open Source Group’s Linux Kernel Updates and More from LinuxCon

This year's LinuxCon & Kernel Summit North America were notable for several reasons, not the least of which included being able to see the scenic views of downtown Chicago through the hotel lobby windows! Below, the Samsung Open Source Group will share our top highlights of the conferences, as well as look forward to what we can expect from LinuxCon Europe next month in Germany. Read more

Open source all the tasks

During the rise of Windows, I was using a desktop composed of a Conectiva Linux (now Mandriva), a window manager called Window Maker, and a Netscape browser. I connected to the Internet using my modem and PPP. Not bad for those who like alternatives. It so happens that at that time the maturity of the software we were using freely and openly was questionable. Furthermore, we didn't have a lot of options when it came to the tools we used to perform our daily tasks. Recently, I was invited to talk at the Firebird Developers Day about Firebird. Firebird is a completely mature open source database management system and is used by companies worldwide. My presentation was about the launch of the FireServer Project, previously covered on Opensource.com: Migration to open source tool inspires new Linux distributiont. It's a Linux distribution based on CentOS and dedicated exclusively to providing a high performance environment to a Firebird database server. It also boasts an ecosystem of value-added services. Read more

Petition Started for 64-bit and Linux Support on Intel Atom Bay Trail Tablets

The Intel Atom Bay Trail tablets have been out for a few months already, but none of the hardware vendors is providing 64-bit firmware builds for them, which means that you can't install any Linux distros. Read more