Re: Allegations regarding OpenBSD IPSEC

On Wed, Dec 15, 2010 at 08:24, b. f. <bf1783@googlemail.com> wrote:
> I don't think that your reasoning about the government's willingness
> to release this information, or the extent to which this is a partisan
> issue, is correct.

Well, the NSA wiretap thing was leaked only a couple years after it
started. If you want to believe that *nobody* in Washington, through
several election cycles and a change in majority party, would be
interested in exposing this for political (or financial, in the case
of the media) gain and his "NDA" accidentally timed out or whatever,
feel free.

> But the details of who was involved, and what
> agreements were in place, are secondary to the issue of whether there
> are vulnerabilities, intentional or otherwise, in the code. =A0For those
> who have the time and ability to audit the code, there are some
> possible problems to look for:
>
> http://marc.info/?l=3Dopenbsd-tech&m=3D129237675106730&w=3D2
>
> b.
>

They won't be secondary if someone does find a minor bug in the
network stack (regardless who introduced it or if it is even related),
which will probably happen given the attention this will invariably
receive.

--=20
Rob Farmer
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"