OpenBSD/FBI allegations denied by named participants
Dec 15, 2010, 22:05 (0 Talkback[s])
(Other stories by Brian Proffitt)
Re-Imagining Linux Platforms to Meet the Needs of Cloud Service Providers
"Update: This story was updated at 0920 on Dec. 15 to include
comments from the second Scott Lowe, and expand on additional
questions now sent to Gregory Perry.
"Amidst startling accusations revealed by OpenBSD founder and
lead developer Theo de Raadt today that 10 years ago the US Federal
Bureau of Investigations paid developers to insert security holes
into OpenBSD code, some confusion about the accusations has already
emerged, with one named party strongly denying any involvement.
"According to a post by de Raadt on the [openbsd-tech] mailing
list, he received an email from Gregory Perry, CEO of GoVirtual
Education, a Florida-based VMWare training firm, in which Perry
told de Raadt he was "aware of the fact that the FBI implemented a
number of backdoors and side channel key leaking mechanisms into
the OCF, for the express purpose of monitoring the site to site VPN
encryption system implemented by EOUSA [an acronym for the US Dept.
of Justice], the parent organization to the FBI."