FBI accused of planting backdoor in OpenBSD IPSEC stack - Miata Turbo Forum - Boost cars, acquire cats.

Welcome to Miataturbo.net   Members
 


Insert BS here A place to discuss anything you want

Reply
 
 
 
LinkBack Thread Tools Search this Thread
Old 12-15-2010, 09:27 PM   #1
Moderator
Thread Starter
iTrader: (11)
 
sixshooter's Avatar
 
Join Date: Nov 2008
Location: Tampa, Florida
Posts: 15,687
Total Cats: 1,562
Default FBI accused of planting backdoor in OpenBSD IPSEC stack

I have no idea what this actually means, but it seemed important to a geek buddy of mine so I thought I'd share.

What does this mean to Joe everyguy and what does this mean to Joe Perez?

http://arstechnica.com/open-source/n...psec-stack.ars
sixshooter is offline   Reply With Quote
Old 12-15-2010, 10:19 PM   #2
"Quality" is my first name.
iTrader: (3)
 
Quality Control Bot's Avatar
 
Join Date: Dec 2007
Posts: 2,611
Total Cats: 69
Default

basically they canon rushed.

Attached Thumbnails
FBI accused of planting backdoor in OpenBSD IPSEC stack-canon.jpg  
Quality Control Bot is offline   Reply With Quote
Old 12-15-2010, 10:28 PM   #3
Senior Member
 
Join Date: Aug 2010
Location: Maumelle, AR
Posts: 618
Total Cats: 2
Default

Well... basically, openbsd code has been copied into almost everything out there, since its not under the GNU license. Theoretically this back doors could be in your cell phone or blue ray player. Nothing to see here, move along. (in reality, I doubt that anything remains after 10 years, especially given the audits that occur within openbsd)
ianferrell is offline   Reply With Quote
Old 12-15-2010, 10:31 PM   #4
mkturbo.com
iTrader: (24)
 
shuiend's Avatar
 
Join Date: May 2006
Location: Charleston SC
Posts: 13,780
Total Cats: 1,106
Default

IPSec is more or less the protocol that encrypts your packets so that they are secure. Here is an article that says it does not have a backdoor.

Basically if it is true what I understand it does if is gets certain parts of the encryption key so that they can brute force the encryption key quicker.
shuiend is offline   Reply With Quote
Old 12-16-2010, 02:28 AM   #5
Elite Member
iTrader: (2)
 
Newbsauce's Avatar
 
Join Date: Jul 2006
Location: NoVA
Posts: 2,304
Total Cats: 2
Default

If this really happened 10 years ago I'm wondering if it would still be relevant. Key sizes and algorithms have changed fairly dramatically since then which even makes brute force pretty damn difficult. Just to give you some perspective - the DES standard (used until 2k2) had a 56 bit key, today we use the AES standard in which the smallest key size is 2.5x larger. Even if they escrow bits of of the encryption key they'd still have quite a bit to crack.
Newbsauce is offline   Reply With Quote
Old 12-16-2010, 04:46 AM   #6
Junior Member
iTrader: (7)
 
Join Date: Nov 2006
Location: Makakilo
Posts: 444
Total Cats: 0
Default

Quote:
Originally Posted by sixshooter View Post
I have no idea what this actually means, but it seemed important to a geek buddy of mine so I thought I'd share.

What does this mean to Joe everyguy and what does this mean to Joe Perez?

http://arstechnica.com/open-source/n...psec-stack.ars
It sort of means Linux and random ----.
r808 is offline   Reply With Quote
Old 12-16-2010, 04:47 AM   #7
Junior Member
iTrader: (7)
 
Join Date: Nov 2006
Location: Makakilo
Posts: 444
Total Cats: 0
Default

Quote:
Originally Posted by Newbsauce View Post
If this really happened 10 years ago I'm wondering if it would still be relevant. Key sizes and algorithms have changed fairly dramatically since then which even makes brute force pretty damn difficult. Just to give you some perspective - the DES standard (used until 2k2) had a 56 bit key, today we use the AES standard in which the smallest key size is 2.5x larger. Even if they escrow bits of of the encryption key they'd still have quite a bit to crack.
DES? If I had a dime for every WEP neighbor. . . Mr. Ubuntu, my directional antenna, and my friend Mr. Kismet disagrees. Good times.
r808 is offline   Reply With Quote
Old 12-16-2010, 08:06 AM   #8
meatbag
iTrader: (50)
 
gospeed81's Avatar
 
Join Date: Nov 2008
Location: Houston, TX
Posts: 7,357
Total Cats: 26
Default

Quote:
Originally Posted by Newbsauce View Post
If this really happened 10 years ago I'm wondering if it would still be relevant.
We're only being told now since it's no longer relevant. What we should pay attention to is what HAS happened if this is true over the past 10yrs...and what that may hint at what could be going on now.
gospeed81 is offline   Reply With Quote
Old 12-16-2010, 12:32 PM   #9
Elite Member
iTrader: (2)
 
Newbsauce's Avatar
 
Join Date: Jul 2006
Location: NoVA
Posts: 2,304
Total Cats: 2
Default

Quote:
Originally Posted by r808 View Post
DES? If I had a dime for every WEP neighbor. . . Mr. Ubuntu, my directional antenna, and my friend Mr. Kismet disagrees. Good times.
I guess I fail to see your cross reference between WEP and DES. Last time I checked the last attack on DES took 22 hours and something like 100k computers. Comparing WEP cracking to that is like comparing removal of the "butterflies" in the Operation game to actual brain surgery.

Last edited by Newbsauce; 12-16-2010 at 12:47 PM.
Newbsauce is offline   Reply With Quote
Old 12-16-2010, 01:51 PM   #10
I'm a terrible person
iTrader: (19)
 
FRT_Fun's Avatar
 
Join Date: Apr 2009
Location: Arizona
Posts: 7,293
Total Cats: 180
Default

Who tries to break encryption anymore? MITM attacks are ftw.
FRT_Fun is offline   Reply With Quote
 
 
Reply

Related Topics
Thread Thread Starter Forum Replies Last Post
Rotrex cooling issue gsyk59 Engine Performance 49 11-22-2015 05:11 AM
"dreadedred" is mad about the Alpha thread and going to sue me, lol hustler Front Desk 98 12-28-2009 09:03 PM
Gains from a velocity stack on a turbo Honda kenzo42 General Miata Chat 22 07-17-2009 01:29 PM
Porsche says Nissan is lying. ray_sir_6 Insert BS here 18 10-01-2008 01:36 PM


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -4. The time now is 05:53 PM.