Allegations of OpenBSD Backdoors May be True, Updated
Dec 22, 2010, 20:32 (2 Talkback[s])
(Other stories by Susan Linton)
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
"It was just last week that Theo de Raadt, OpenBSD founder and
developer, posted an email that claimed the Federal Bureau of
Investigations paid OpenBSD developers to leave backdoors in its
IPSEC network security stack. Since then early audits have found
some questionable code, contributors denied any wrongdoing, and the
original source reaffirmed his allegations.
"When the original post hit the mailing list December 14,
journalists attempted to contact those named in the allegation.
Brian Proffitt, FOSS journalist at ITWorld, contacted two
individuals by the name given in the original email as
participating in the deception and received denials from both.
Another named in the email, Jason Wright, answered the posting from
de Raadt saying,
"Every urban lengend is made more real by the inclusion of real
names, dates, and times."