Just had to share this one..... A former government contractor says that the U.S. Federal Bureau of Investigation installed a number of back doors into the encryption software used by the OpenBSD operating system. The allegations were made public Tuesday by Theo de Raadt, the lead developer in the OpenBSD project. DeRaadt posted an e-mail sent by the former contractor, Gregory Perry, so that the matter could be publicly scrutinized. "The mail came in privately from a person I have not talked to for nearly 10 years," he wrote in his a posting to an OpenBSD discussion list. "I refuse to become part of such a conspiracy, and will not be talking to Gregory Perry about this. Therefore I am making it public." No one has come forward to corroborate Perry's story, but the allegations are remarkable. If they're true -- and at present they're being greeted with skepticism by the security community -- they mean that the FBI may have developed secret ways to snoop on encrypted traffic and then hidden them in source code submissions accepted by OpenBSD. http://www.networkworld.com/news/2010/121510-former-contractor-says-fbi-put....
another conspiracy in the making...huh?..:) On Wed, Dec 15, 2010 at 5:50 PM, aki <aki275@gmail.com> wrote:
Just had to share this one.....
A former government contractor says that the U.S. Federal Bureau of Investigation installed a number of back doors into the encryption software used by the OpenBSD operating system. The allegations were made public Tuesday by Theo de Raadt, the lead developer in the OpenBSD project. DeRaadt posted an e-mail sent by the former contractor, Gregory Perry, so that the matter could be publicly scrutinized. "The mail came in privately from a person I have not talked to for nearly 10 years," he wrote in his a posting to an OpenBSD discussion list. "I refuse to become part of such a conspiracy, and will not be talking to Gregory Perry about this. Therefore I am making it public."
No one has come forward to corroborate Perry's story, but the allegations are remarkable. If they're true -- and at present they're being greeted with skepticism by the security community -- they mean that the FBI may have developed secret ways to snoop on encrypted traffic and then hidden them in source code submissions accepted by OpenBSD.
http://www.networkworld.com/news/2010/121510-former-contractor-says-fbi-put....
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Regards, Adams John Opiyo.
BSDLeaks On 15 December 2010 17:52, John Adams <adams.opiyo@gmail.com> wrote:
another conspiracy in the making...huh?..:)
On Wed, Dec 15, 2010 at 5:50 PM, aki <aki275@gmail.com> wrote:
Just had to share this one.....
A former government contractor says that the U.S. Federal Bureau of Investigation installed a number of back doors into the encryption software used by the OpenBSD operating system. The allegations were made public Tuesday by Theo de Raadt, the lead developer in the OpenBSD project. DeRaadt posted an e-mail sent by the former contractor, Gregory Perry, so that the matter could be publicly scrutinized. "The mail came in privately from a person I have not talked to for nearly 10 years," he wrote in his a posting to an OpenBSD discussion list. "I refuse to become part of such a conspiracy, and will not be talking to Gregory Perry about this. Therefore I am making it public."
No one has come forward to corroborate Perry's story, but the allegations are remarkable. If they're true -- and at present they're being greeted with skepticism by the security community -- they mean that the FBI may have developed secret ways to snoop on encrypted traffic and then hidden them in source code submissions accepted by OpenBSD.
http://www.networkworld.com/news/2010/121510-former-contractor-says-fbi-put....
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Regards, Adams John Opiyo.
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Mimano G. Muthondu, Software Developer skype : gmimano Mobile : +254 723 615 206
hehehe, BSD Leaks indeed.... On Wed, Dec 15, 2010 at 5:53 PM, Geoffrey Mimano <soyfactor@gmail.com>wrote:
BSDLeaks
On 15 December 2010 17:52, John Adams <adams.opiyo@gmail.com> wrote:
another conspiracy in the making...huh?..:)
On Wed, Dec 15, 2010 at 5:50 PM, aki <aki275@gmail.com> wrote:
Just had to share this one.....
A former government contractor says that the U.S. Federal Bureau of Investigation installed a number of back doors into the encryption software used by the OpenBSD operating system. The allegations were made public Tuesday by Theo de Raadt, the lead developer in the OpenBSD project. DeRaadt posted an e-mail sent by the former contractor, Gregory Perry, so that the matter could be publicly scrutinized. "The mail came in privately from a person I have not talked to for nearly 10 years," he wrote in his a posting to an OpenBSD discussion list. "I refuse to become part of such a conspiracy, and will not be talking to Gregory Perry about this. Therefore I am making it public."
No one has come forward to corroborate Perry's story, but the allegations are remarkable. If they're true -- and at present they're being greeted with skepticism by the security community -- they mean that the FBI may have developed secret ways to snoop on encrypted traffic and then hidden them in source code submissions accepted by OpenBSD.
http://www.networkworld.com/news/2010/121510-former-contractor-says-fbi-put....
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Regards, Adams John Opiyo.
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Mimano G. Muthondu, Software Developer skype : gmimano Mobile : +254 723 615 206
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
-- Regards, Greg -------- Life is not a rehearsal, you only live once!
On Wed, Dec 15, 2010 at 5:54 PM, Gregory Okoth <gregory.okoth@gmail.com>wrote:
hehehe, BSD Leaks indeed....
Either some "distractants" aimed at Wikileaks or ..well, I can't say. Now someone wants OpenBSD developers to get into code audit dating back 10 years, to find what code commits were made by some developers and see which of those were "backdoors", sponsored by FBI!:( -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Damn!!
On Wed, Dec 15, 2010 at 5:50 PM, aki <aki275@gmail.com> wrote:
Just had to share this one.....
A former government contractor says that the U.S. Federal Bureau of Investigation installed a number of back doors into the encryption software used by the OpenBSD operating system. The allegations were made public Tuesday by Theo de Raadt, the lead developer in the OpenBSD project. DeRaadt posted an e-mail sent by the former contractor, Gregory Perry, so that the matter could be publicly scrutinized. "The mail came in privately from a person I have not talked to for nearly 10 years," he wrote in his a posting to an OpenBSD discussion list. "I refuse to become part of such a conspiracy, and will not be talking to Gregory Perry about this. Therefore I am making it public."
No one has come forward to corroborate Perry's story, but the allegations are remarkable. If they're true -- and at present they're being greeted with skepticism by the security community -- they mean that the FBI may have developed secret ways to snoop on encrypted traffic and then hidden them in source code submissions accepted by OpenBSD.
http://www.networkworld.com/news/2010/121510-former-contractor-says-fbi-put....
Just unbelievable! (if these claims are confirmed to be true) This is what NDAs (and money) get you. You can only imagine what they've got companies like Microsoft to do with their software.
What does this imply that opensource code is no longer to be trusted, unless audited?
On Thu, Dec 16, 2010 at 9:02 AM, Dennis Kioko <dmbuvi@gmail.com> wrote:
What does this imply that opensource code is no longer to be trusted, unless audited?
Audit is always there. To be specific, OpenBSD and FreeBSD do have designated "security officers" whose job is just this. No code is committed to the source tree without them poring over it with a serious "magnifying glass". I think the problem starts when there are several security officers, who then happen to "leave the job to the other officer" or when the security officer gets compromised. Somehow, you cannot stop the FBI if they wanted something, or could you? I see this issue as being more about FBI (I am being specific) dirty tricks and not Open Source development per se. For the coders who fell for the FBI's bait, it's simply a betrayal to the OS community and should be seen as just that. -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Damn!!
Seems Big Brother has always been watching. -- ˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙˙ Regards, David Njuki @njukey [Google,Twitter,Yahoo]
On Wed, Dec 15, 2010 at 6:49 PM, Joseph Wayodi <jwayodi@gmail.com> wrote:
Just unbelievable! (if these claims are confirmed to be true) This is what NDAs (and money) get you. You can only imagine what they've got companies like Microsoft to do with their software.
< http://www.computerworld.com/s/article/9141105/NSA_helped_with_Windows_7_dev...
<http://www.tomshardware.com/news/microsoft-windows-7-nsa-backdoor,9130.html
of course, with windows there is no way to audit the source
In other words, the FBI will deploy coders to code for them ....
participants (9)
-
aki -
ashok+skunkworks@parliaments.info -
David Njuki -
Dennis Kioko -
Geoffrey Mimano -
Gregory Okoth -
John Adams -
Joseph Wayodi -
Odhiambo Washington