Government Backdoors in OpenBSD?
Follow Us:
Follow us on Twitter
Subscribe to our RSS
Government Backdoors in OpenBSD?
by Susan Linton - Dec. 14, 2010Comments (0)
Related Blog PostsSecure Your Network With pfSenseLearn Unix With OpenBSDOStatic Buffer Overflow...
We've all heard rumors of backdoors for governments or rogue elements of governments in Microsoft Windows systems, but did we ever think we might find it in the Open Source world? Well, according to Theo de Raadt, renowned Open Source developer, that just might be the Raadt stated in a post to the openbsd-tech mailing list that former OpenBSD developers accepted funding from the Federal Bureau of Investigations to write backdoors into the OpenBSD IPSEC network stack. IPSEC is a set of tools that provide security and encryption of connections. According to the source around 2000-2001 "the FBI implemented a number of backdoors and side channel key leaking mechanisms into the OCF, for the express purpose of monitoring the site to site VPN encryption system implemented by EOUSA, the parent organization to the FBI." He also alleged this might be the real reason de Raadt lost DARPA funding for developing OpenSSH and OpenBSD, which was previously believed to be because of de Raadt's publicly stated opposition to the US occupation of Iraq.Gregory Perry, CEO of GoVirtual Education and de Raadt's source, further stated that this was the reason the FBI has been "advocating the use of OpenBSD for VPN and firewalling implementations in virtualized environments."de Raadt has suggested an audit of the IPSEC stack, but wonders if much of the nefarious code (if it ever existed) is left after such a long period of time. Jonathan Corbet, Linux kernel developer and author, said, "It will be interesting to see if the forthcoming audit turns up anything, or whether it is simply a strange FUD campaign." If present, one has to wonder why no one has found evidence of it as of yet.OpenBSD was born in 1995 after de Raadt departed the NetBSD project. The Unix-like operating system has been in development since with the latest version released November 2010.
OpenBSD IPSEC Theo de Raadt
Previous: Open Source vs. Prop...Next: In the Browser Game,... Browse Blog
Jesse Babson uses OStatic to support Open Source, ask and answer questions and stay informed. What about you?
Share Your Comments
If you are a member, Sign in to have your comment attributed to you. If you are not yet a member, Join OStatic and help the Open Source community by sharing your thoughts, answering user questions and providing reviews and alternatives for projects.
Your Name
Email Address (kept hidden)
Your Comment *
Promote Open Source Knowledge by sharing your thoughts, listing Alternatives and Answering Questions!
Explore Software in this Blog Post
OpenBSD has 0 reviews4 users
Your cloud solution managed 24/7
Expert cloud management & monitoring services starting at $9/mo.
Explore the plans
Featured MembersViewCraig HarrisI'm a tech analyst at a local firm here in Cambrid...
ViewJesse BabsonI used to work for a large chip company here and a...
Related Questions
Get answers and share your expertise.
Have a question? Ask the community
Partner Center
Happening Now on OStatic
Gomez commented on One Server Per Person
anonymous commented on It's Official: OpenMandriva Association Incorporated
anonymous commented on It's Official: OpenMandriva Association Incorporated
About OStatic
Terms of Service
Privacy Policy
Send Feedback
Powered by Vox Holdings
© 2011 OStatic. Design by smallTransport. Built on fine Open Source Software from projects like
MySQL and
Sign in to OStatic
Username: *
Password: *
Not a member? Join NowI forgot my password