Full Disclosure: Re: Allegations regarding OpenBSD IPSEC

Re: Allegations regarding OpenBSD IPSEC

From: Michal Zalewski <lcamtuf () coredump cx>
Date: Wed, 15 Dec 2010 11:33:42 -0800

So for 10 years IPSEC has had a backdoor in it and not one person examining
the code has noticed it?  Or even questioned it?  That's a bit hard to
believe.


Yeah, this totally never happens in the FOSS world.

http://www.theregister.co.uk/2009/08/14/critical_linux_bug/

/mz

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Allegations regarding OpenBSD IPSEC bugs (Dec 15)
- Re: Allegations regarding OpenBSD IPSEC Paul Schmehl (Dec 15)
  - Re: Allegations regarding OpenBSD IPSEC musnt live (Dec 15)
  - Re: Allegations regarding OpenBSD IPSEC bk (Dec 15)
    - Re: Allegations regarding OpenBSD IPSEC Paul Schmehl (Dec 15)
    - Re: Allegations regarding OpenBSD IPSEC J. Oquendo (Dec 15)
    - Re: Allegations regarding OpenBSD IPSEC Aldis Berjoza (Dec 15)
  - Re: Allegations regarding OpenBSD IPSEC Steve Pinkham (Dec 15)
  - Re: Allegations regarding OpenBSD IPSEC Michal Zalewski (Dec 15)
  - Re: Allegations regarding OpenBSD IPSEC Valdis . Kletnieks (Dec 15)
  - Re: Allegations regarding OpenBSD IPSEC phil (Dec 15)
    - Re: Allegations regarding OpenBSD IPSEC clément Game (Dec 15)
    - Re: Allegations regarding OpenBSD IPSEC BMF (Dec 16)
  - Re: Allegations regarding OpenBSD IPSEC Larry Seltzer (Dec 16)
    - Re: Allegations regarding OpenBSD IPSEC Graham Gower (Dec 16)
    - Re: Allegations regarding OpenBSD IPSEC mark seiden (Dec 16)
    - Re: Allegations regarding OpenBSD IPSEC Abuse007 (Dec 16)
    - Re: Allegations regarding OpenBSD IPSEC Valdis . Kletnieks (Dec 16)
    - Re: Allegations regarding OpenBSD IPSEC malfy (Dec 16)

(Thread continues...)