DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 18th March 2012
dbach dbach is offline
Port Guard
 
Join Date: Aug 2011
Posts: 23
Thanked 0 Times in 0 Posts
Default Dated information but was this in fact true?

http://news.cnet.com/8301-31921_3-20...#ixzz18Qszr72T

Darryl
Reply With Quote
  #2   (View Single Post)  
Old 18th March 2012
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 2,883
Thanked 190 Times in 160 Posts
Default

No.
Reply With Quote
  #3   (View Single Post)  
Old 19th March 2012
drhowarddrfine drhowarddrfine is offline
VPN Cryptographer
 
Join Date: May 2008
Posts: 358
Thanked 9 Times in 8 Posts
Default

Just to confirm. No.
Reply With Quote
  #4   (View Single Post)  
Old 19th March 2012
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,687
Thanked 214 Times in 189 Posts
Default

And to elaborate slightly, after this public release of allegations (released by Theo, by the way) an audit of implicated code was performed. Through this additional scrutiny an unrelated crypto bug (or two) was (were) found and corrected.
Reply With Quote
  #5   (View Single Post)  
Old 20th March 2012
jjennings089 jjennings089 is offline
Port Guard
 
Join Date: Mar 2012
Posts: 12
Thanked 0 Times in 0 Posts
Default

A quick search of 'openbsd fbi backdoor' loads of great articles. I remeber at the time this rumor kicked off how much drama it seemed to brew up....
Reply With Quote
  #6   (View Single Post)  
Old 20th March 2012
denta denta is offline
Fdisk Soldier
 
Join Date: Nov 2009
Posts: 73
Thanked 0 Times in 0 Posts
Default

Slightly offtopic, but given the "recently" published vulnerabilities of WPS (Wi-Fi protected setup), and associated tools such as reaver (http://code.google.com/p/reaver-wps), I've been relying more or less completly on IPsec/authpf for my home wireless network. Yes, its a crap AP with no way to disable WPS.

Anyway! I'm guessing that unless you have three-lettered government agencys snooping around on your network, even a backdoor'ed IPsec will provide more security than wpa2-psk's for the average network (with WPS) at the moment since there are no known published weaknesses.
Reply With Quote
  #7   (View Single Post)  
Old 20th March 2012
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,687
Thanked 214 Times in 189 Posts
Default

I have one AP that is only WEP capable, on which I use IPSec. I used to use AuthPF but no longer need it.

Also OT:
If you're interested in learning more about these things ... this class has been interesting. Week 1's homework includes real cryptanalysis -- we are breaking a stream cipher that is using an excellent random number generator .. but which was deployed with a simple, small error in implementation.

Week 1. Yep.

(That particular implementation error exists in some encryption systems still in wide use. I'm amazed that this is so.)
Reply With Quote
  #8   (View Single Post)  
Old 21st March 2012
denta denta is offline
Fdisk Soldier
 
Join Date: Nov 2009
Posts: 73
Thanked 0 Times in 0 Posts
Default

Yea, was just about to start on the week #2 lectures!
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
is this is a true? lumiwa Off-Topic 2 21st December 2010 02:00 PM
Various Groups -- Information JMJ_coder General software and network 3 20th December 2008 04:35 AM
sysctl and cpu information and temperature neurosis FreeBSD General 11 22nd October 2008 09:16 PM
Copyright information erno NetBSD General 2 6th May 2008 04:16 PM


All times are GMT. The time now is 06:14 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick