DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 16th December 2013
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,135
Thanked 182 Times in 149 Posts
Default Crypto: FreeBSD playing catch-up, says De Raadt

From http://www.itwire.com/business-it-ne...-says-de-raadt

Quote:
The OpenBSD project has no reason to follow the steps taken by FreeBSD with regard to hardware-based cryptography because it has already been doing this for a decade, according to Theo de Raadt.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 16th December 2013
shep shep is offline
ISO Quartermaster
 
Join Date: May 2008
Location: Dry and Dusty
Posts: 577
Thanked 9 Times in 9 Posts
Default

Theo, always subtle and gracious.


Took a quick spin through the FreeBSD forums and did not see the item in their security/news sections. I' m not going to be the one to post it
Reply With Quote
  #3   (View Single Post)  
Old 16th December 2013
Ninguem Ninguem is offline
Shell Scout
 
Join Date: Jun 2011
Posts: 136
Thanked 0 Times in 0 Posts
Default

The reference already exists on the forums. Intel's hardware can/could not be trusted; so, the end user is given the option of software cryptography or chancing the "holey" hardware. NSA stuff and all that.
__________________
No signature
Reply With Quote
  #4   (View Single Post)  
Old 16th December 2013
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,608
Thanked 214 Times in 189 Posts
Default

You were mislead by yet another misleading article, Ninguem. De Raadt was not referring to crypto at all, but to programming practices for kernel services such as memory allocations. His complaint is that FreeBSD has developed but elected not to deploy several such security features, which began use in OpenBSD and have migrated to other platforms, including Linux and (gasp!) Windows. Look to his presentation, referenced in the article, and the last several slides.
Reply With Quote
  #5   (View Single Post)  
Old 17th December 2013
thirdm thirdm is offline
Package Pilot
 
Join Date: May 2009
Posts: 194
Thanked 3 Times in 3 Posts
Default

Quote:
Originally Posted by jggimi View Post
You were mislead by yet another misleading article, Ninguem. De Raadt was not referring to crypto at all, but to programming practices for kernel services such as memory allocations. His complaint is that FreeBSD has developed but elected not to deploy several such security features, which began use in OpenBSD and have migrated to other platforms, including Linux and (gasp!) Windows. Look to his presentation, referenced in the article, and the last several slides.

Well wait now. True, that presentation mentioned at the end doesn't discuss the random number generator, but the article has quotes from Theo regarding this change: http://arstechnica.com/security/2013...evelopers-say/ and that OpenBSD and Linux didn't use (or provide an option to use, at least in kernel for populating /dev/random?) the hardware generated random numbers directly without combination with other sources of randomness.

If this ars technica quote isn't misleading by being out of context or something, it seems like FreeBSD has more pressure from users (particularly corporate users?) to do weird things:

"The meetings came shortly after a FreeBSD patch a third party submitted in July gave users the ability to use RDRAND and Padlock as direct sources of randomness. The update was committed without proper review and against established policy, and over the next few weeks all or parts of it were removed and recommitted FreeBSD Security Officer Dag-Erling Smørgrav told Ars. The change was finally removed altogether in October. Aside from the brief span earlier this year, no FreeBSD release has ever shipped with the option to feed the bit stream from a hardware pseudo-random number generator directly to /dev/random, Smørgrav said."

"Smørgrav went on to say that some corporate users have long expressed a wish that FreeBSD allow them to run raw feeds from RDRAND, because its underlying algorithm is listed as an approved deterministic RNG under the FIPS 140 standard defense contractors and other government workers are required to follow. Using a few lines of code, FreeBSD users can to use RDRAND directly in userland rather than use the kernel to feed it to them directly."

But one misleading thing maybe. These quotes make it sound like FreeBSD was doing the right thing previously but the July patch got by messing that up, not that only after 10 years have they mixed rdrand with other sources. Am I understanding that rightly?

I've been only sort of following the story. Is maybe the source of Theo's frustration that FreeBSD (maybe not purposely but because of the screwed up technical press) has gotten promoted for increasing security when in fact all they did was correct a slip up they made recently? Yeah, I'd be pissed off too if people came asking me why I hadn't slipped up in my security and then corrected it to public acclaim.

Thanks for pointing out the slides though. I'm really happy to have 5.4 working on my laptop (previously it wouldn't work properly) and to be a full time (well not including work but who counts that, eh) OpenBSD user again.
Reply With Quote
  #6   (View Single Post)  
Old 17th December 2013
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,608
Thanked 214 Times in 189 Posts
Default

We might be in agreement.

Yes, he's confirming that HRNGs have been "safely" deployed with other entropy. But what grinds his gears appears to be that FBSD has been given unjustified kudos when (from his perspective) they haven't addressed clearly identified risks that others have already mitigated.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenBSD Doing It de Raadt Way J65nko News 1 16th October 2013 08:36 PM
Security Another crypto-attack on SSL/TLS encryption J65nko News 0 15th March 2013 12:54 PM
Security Unlucky for you: UK crypto-duo 'crack' HTTPS in Lucky 13 attack J65nko News 0 4th February 2013 10:51 PM
'Severe' OpenSSL vuln busts public key crypto J65nko News 0 5th March 2010 01:01 AM


All times are GMT. The time now is 09:17 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick