mailing list archives
Re: Allegations regarding OpenBSD IPSEC
From: Charlie Derr <cderr () simons-rock edu>
Date: Fri, 17 Dec 2010 13:29:44 -0500
-----BEGIN PGP SIGNED MESSAGE-----
On 12/17/2010 12:52 PM, Paul Schmehl wrote:
--On December 17, 2010 12:31:37 PM -0500 Larry Seltzer
<larry () larryseltzer com> wrote:
The one thing Mr. Perry has not done, and which, if his claims have any
merit at all, he could easily do, since he claims he's no longer under
is post the code that proves that there is a backdoor. After all, he
supposedly wrote it, along with others.
Actually, he did not say that he wrote code. He said that "Jason
Wright and several other developers were responsible for those
I quote Mr. Perry:
"I left NETSEC in 2000 to start another venture, I had
some fairly significant concerns with many aspects of these projects,
and I was the lead architect for the site-to-site VPN project
developed for Executive Office for United States Attorneys, which was
a statically keyed VPN system used at 235+ US Attorney locations and
which later proved to have been backdoored by the FBI so that they
could recover (potentially) grand jury information from various US
Attorney sites across the United States and abroad."
Still think he never wrote any and had no knowledge of the code? What does
"lead architect" mean?
I actually thought about this as possibly providing more motivation for Mr. Perry to whine about the FBI being
responsible for subverting a project that he was in charge of. While the previous motivations that you guessed at all
seem plausible, this one jumped out at me. Being able to pin his failure to secure the VPN for US Attorneys on the FBI
(and at least partially steer attention away from his own culpability) seems like potentially a very good reason for him
to have made these allegations in the first place. But of course I have no evidence and am just guessing.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
-----END PGP SIGNATURE-----
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
Re: Allegations regarding OpenBSD IPSEC Ryan Sears (Dec 15)
Allegations regarding OpenBSD IPSEC paul . szabo (Dec 17)