Author Topic: FBI (možda) ubacio backdoor u OpenBSD IPSEC  (Read 3342 times)


Dule Mars

  • Hero Member
  • *****
  • Posts: 665
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #1 on: December 15, 2010, 08:25:59 am »
Zanimljivo :)
Ja moram da jedem krstove! Ja sam nešto drugo, a ne pop!

*BSD

  • Sr. Member
  • ****
  • Posts: 487
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #2 on: December 15, 2010, 10:17:39 am »
"If 386BSD had been available when I started on Linux, Linux would probably never had happened." Linus Torvalds

Dule Mars

  • Hero Member
  • *****
  • Posts: 665
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #3 on: December 15, 2010, 12:33:02 pm »
Zanimljiva su ova razmisljanja o nacinu na koji bi backdoor mogao biti implementiran :) Licno, ja mislim da rupe nema, neko bi to vec primetio ili slucajno izmenio i ucinio neupotrebljivim... A kad je gospodin toliko dobar da kaze da je pravio rupe, zasto ne kaze i gde su :)
Ja moram da jedem krstove! Ja sam nešto drugo, a ne pop!

z0ran

  • Full Member
  • ***
  • Posts: 150
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #4 on: December 15, 2010, 06:19:29 pm »
Cak i da od toga nema nista, buva je pustena...sad ko voli neka izvoli, a za one koje nemaju toliko znanje da virnu da provere i da se uvere, ima li rupe ili ne, a paranoicni su ( taj sam ), nije ostalo nista nego da vidimo sta nam drugi kazu...zeleni_obad, sta ti mislis o svemu ovome? :))
"If you aim the gun at your foot and pull the trigger, it's UNIX's job to ensure reliable delivery of the bullet to where you aimed the gun (in this case, Mr. Foot)."

Admin

  • Administrator
  • Hero Member
  • *****
  • Posts: 1367
    • http://www.bsdserbia.org
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #5 on: December 15, 2010, 11:24:12 pm »
Audit se trenutno radi. Cak je raspisana i nagrada za onog ko nadje dokaz da postoji backdoor. No, ovaj dogadjaj bih posmatrao malo sire od IPSEC i OpenBSD - ako niste primetili, glavna tema vec nedeljama jeste opsta histerija oko bezbednih komunikacija aka Wikileaks. Mislim da ovo sa IPSEC predstavlja samo pocetak jos vece histerije koja pocinje da zaokuplja sve zive. Jako zabavno za pratiti - iako je u pitanju jako, jako, jako puno informacija sa razlicitih frontova.:D

If it moves, crypt it. Unless it's static - than you should double-crypt it

uporna_neznalica

  • Sr. Member
  • ****
  • Posts: 450
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #6 on: December 16, 2010, 08:30:04 am »
U svakom slucaju, jos jedan veliki plus za OpenBSD - i kako je do navodnog backdoor-a doslo i kako su reagovali cim se za tvrdnje saznalo.

'Nema nista tajno sto nece postati javno'.

Dule Mars

  • Hero Member
  • *****
  • Posts: 665
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #7 on: December 16, 2010, 11:00:09 am »
Odlicno za marketing. Kladim se da je zbog ovoga masa ljudi prvi put uopste cula za OpenBSD :cool:

K'o pornici slavnih licnosti :D
Ja moram da jedem krstove! Ja sam nešto drugo, a ne pop!

soxxx

  • Administrator
  • Hero Member
  • *****
  • Posts: 1438
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #8 on: December 16, 2010, 08:36:58 pm »
Quote from: Dule Mars
Odlicno za marketing. Kladim se da je zbog ovoga masa ljudi prvi put uopste cula za OpenBSD :cool:

K'o pornici slavnih licnosti :D
:D :D :D
The best way to learn UNIX is to play with it, and the harder you play, the more you learn.
If you play hard enough, you'll break something for sure, and having to fix a badly broken system is arguably the fastest way of all to learn. -Michael Lucas, AbsoluteBSD

soxxx

  • Administrator
  • Hero Member
  • *****
  • Posts: 1438
The best way to learn UNIX is to play with it, and the harder you play, the more you learn.
If you play hard enough, you'll break something for sure, and having to fix a badly broken system is arguably the fastest way of all to learn. -Michael Lucas, AbsoluteBSD

soxxx

  • Administrator
  • Hero Member
  • *****
  • Posts: 1438
FBI (možda) ubacio backdoor u OpenBSD IPSEC
« Reply #10 on: January 04, 2011, 09:21:34 am »
Dakle, na kraju se ispostavilo da FBI nije imao backdoor u IPsec steku, ali je skoro sigurno imao na nekom NetSec proizvodu... :) Dobra stvar je to sto je ovo dovelo do zesceg code audit-a pa su nadjena dva bug-a u steku. Bravo za momke. ;)

http://www.newsfactor.com/news/OpenBSD-Founder--No-FBI-Backdoor/story.xhtml?story_id=00200048I956


P.S. Ima poruka i na OpenBSD mailing listi ko hoce da cita opsirnije.
The best way to learn UNIX is to play with it, and the harder you play, the more you learn.
If you play hard enough, you'll break something for sure, and having to fix a badly broken system is arguably the fastest way of all to learn. -Michael Lucas, AbsoluteBSD