On Apr 13, 2014 4:22 AM, "Rogelio Serrano" <[email protected]> wrote: > > > On 12 Apr 2014 20:48, "fooler mail" <[email protected]> wrote: > > > > you don't get it also.... plan B is to deny that is not intentional > > He put it there on purpose? Where is that coming from? The guy apologised!
Well given there are already news that the NSA exploited the bug, even though they denied it. Of course the if this guy was paid by the NSA to insert this "backdoor", he will never, ever admit it. That's why for stuff like OpenSSL, they need to change the process for accepting patches, probably two or three levels of approval. And there should be a regular code audit by a very reliable third party.
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
