<div dir="ltr">On Thu, Dec 16, 2010 at 11:20 PM, Insurance Squared Inc. <span dir="ltr"><<a href="mailto:gcooke@insurancesquared.com">gcooke@insurancesquared.com</a>></span> wrote:<br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Or so the claim goes:<br>
<a href="http://www.computerworld.com/s/article/9201220/Former_contractor_says_FBI_put_back_door_in_OpenBSD" target="_blank">http://www.computerworld.com/s/article/9201220/Former_contractor_says_FBI_put_back_door_in_OpenBSD</a><br>
<br>
Isn't OpenBSD opensource? How can someone backdoor OSS?<br></blockquote><div><br>I find this hard to believe. Not only did no one notice in 10 years, but also <br>why would the FBI target only OpenBSD, and not the other BSD variants,<br>
or Linux?<br><br><a href="http://bsd.slashdot.org/story/10/12/15/004235/FBI-Alleged-To-Have-Backdoored-OpenBSDs-IPSEC-Stack">http://bsd.slashdot.org/story/10/12/15/004235/FBI-Alleged-To-Have-Backdoored-OpenBSDs-IPSEC-Stack</a><br>
<br><a href="http://bsd.slashdot.org/story/10/12/15/1524202/BSD-Coder-Denies-Adding-FBI-Backdoor">http://bsd.slashdot.org/story/10/12/15/1524202/BSD-Coder-Denies-Adding-FBI-Backdoor</a><br><br>If you read the above two links, specially the comments, you may come<br>
to the same conclusion as I did: a) this is an allegation, and b) even if it<br>is true, it is not a true backdoor.<br><br>Assuming that it is true, all it does is make the encryption easier to crack <br>by making the random number generator predictable.<br>
<br>The jury is still out on this one.<br></div></div>-- <br>Khalid M. Baheyeldin<br><a href="http://2bits.com">2bits.com</a>, Inc.<br><a href="http://2bits.com">http://2bits.com</a><br>Drupal optimization, development, customization and consulting.<br>
Simplicity is prerequisite for reliability. -- Edsger W.Dijkstra<br>Simplicity is the ultimate sophistication. -- Leonardo da Vinci<br>
</div>