OpenBSD code audit uncovers bugs, but no evidence of backdoor

OpenBSD project leader Theo de Raadt disclosed an e-mail earlier this month in which former NETSEC CTO Gregory Perry claimed that his company was paid by the FBI to plant a "backdoor" in the OpenBSD IPSEC stack. The allegations led to a thorough code review and historical analysis of the relevant code.

In a follow-up e-mail published this week, de Raadt outlined his current perspective on the controversy and his interpretation of the findings that have emerged from the ongoing code audit. Reviews are being conducted on the history and provenance of code in the IPSEC stack as well as the current implementation. Reviewers have uncovered several bugs that could have security implications, but the nature of the bugs suggests that they were not intentional, nor were they intended to facilitate a backdoor.

Source

This is a follow up a news article that broke a few weeks ago about the Feds paying to have a backdoor put in OpenBSD operating system. So far it turns out that it's untrue.

reply to post by TinFoilHatMan55


Well OpenBSD is obviously open source software anyway, they say on the website "OpenBSD is developed entirely by volunteers", so what is to stop agents becoming developers? Not to mention, every single change to the code is recorded, and the status of the software and checksum information is always being watched.