OpenBSD IPSEC backdoored?
OpenBSD IPSEC backdoored?
[Security] Posted Dec 15, 2010 2:02 UTC (Wed) by corbet
When one hears allegations that the US FBI has paid people to put backdoors
into the OpenBSD IPSEC stack, one might normally be inclined to take them
with a large grain of salt. When such allegations are passed on by Theo de
Raadt, though, they merit a look. "I have received a mail regarding the early development of the OpenBSD
IPSEC stack. It is alleged that some ex-developers (and the company
they worked for) accepted US government money to put backdoors into
our network stack, in particular the IPSEC stack. Around
2000-2001.
" It will be interesting to see if the forthcoming audit
turns up anything, or whether it is simply a strange FUD campaign.