[cryptography] Fwd: [gsc] Fwd: OpenBSD IPSEC backdoor(s)

Paul Crowley paul at ciphergoth.org
Fri Dec 17 14:09:10 EST 2010


On 17/12/10 18:51, Marsh Ray wrote:
> I'm starting to get the idea that people just aren't reviewing the
> commits on even medium-large-sized projects like OpenBSD as thoroughly
> as we'd like to think.

Not enough positives.

To get around this, provide an incentive for coders to include back 
doors after first declaring them in a specific commit to the security 
team.  Best back door that evades a reviewer wins a prize, perhaps.
-- 
   __
\/ o\ Paul Crowley, paul at ciphergoth.org
/\__/ http://www.ciphergoth.org/



More information about the cryptography mailing list