Thread: Allegations regarding OpenBSD IPSEC
View Single Post
  #19   (View Single Post)  
Old 17th December 2010
Oliver_H's Avatar
Oliver_H Oliver_H is offline
Real Name: Oliver Herold
UNIX lover
  
Join Date: May 2008
Location: Germany
Posts: 427
Default
Quote:
Originally Posted by rocket357 View Post
My point is that while the ipsec stack was written by and peer-reviewed by the OpenBSD team members, GCC, sadly, is not. It would be considerably more difficult to inject malicious code into a peer-review software system than it would be to hide code in a bloated suite of tools like GCC.

I don't trust GCC, but until PCC takes over, it's the best we've got...so I use it.

And even though it'd be "more difficult", I'm not implying it couldn't be done...
GCC uses different enhancements in GCC like ProPolice etc.:

http://www.openbsd.org/cgi-bin/man.c...86&format=html
__________________
use UNIX or die :-)
Reply With Quote