Slashdot Mirror
Linus Torvalds Admits He's Been Asked To Insert Backdoor Into Linux
darthcamaro writes "At the Linuxcon conference in New Orleans today, Linus Torvalds joined fellow kernel developers in answering a barrage of questions about Linux development. One question he was asked was whether a government agency had ever asked about inserting a back-door into Linux. Torvalds responded 'no' while shaking his head 'yes,' as the audience broke into spontaneous laughter. Torvalds also admitted that while he as a full life outside of Linux he couldn't imagine his life without it. 'I don't see any project coming along being more interesting to me than Linux,' Torvalds said. 'I couldn't imagine filling the void in my life if I didn't have Linux.'"
*If* such a mechanism was coded in, the nature of open source would mean it would be found by others. This in turn would compromise the trust of the ENTIRE kernel. That trust can take years to build up - but be detroyed in a heartbeat.
Unless you're in Albania, Bulgaria or Macedonia ;)
This is so weird to most Europeans and Americans.... A common question by American teachers in my high-school in Bulgaria was, "does it make sense", usually followed by about half the people shaking their heads and half the people nodding, to the obvious (yet silent) horror of the teacher. They got used to it eventually.
What is best however is the never-ending rotational head movement that some people from the Indian subcontinent use.
... can't tell the difference between humour and reality.
Torvalds said no while nodding his head yes is a JOKE people, not a fucking admission. Please, save the tinfoil paranoia for Reddit, and keep the serious tech discussions here.
Reflections on Trusting Trust
One question he was asked was whether a government agency had ever asked about inserting a back-door into Linux. Torvalds responded 'no' while shaking his head 'yes,'
That's actually quite a cunning answer: possibly, regardless of his answer to the back-door request (I hope the answer was something like "No, fuck you"), like others in comparable situations have hinted at, maybe he's being held accountable to some kind of on-going government "Non-disclosure clause" concerning such a request/conversation.
But can body language and gestures be held up to the same legal gagging? I'm sure no legal precedent been held for that yet, and Linus probably is aware of that.
A cunning, cunning way of answering the question.
Seems we need reminding of this classic by Ken Thompson.
Slip a backdoor into a RHEL 6.x (or any other major Linux distribution) version of GCC and make it do two major things:
1. Slip a backdoor into any Linux kernel it compiles.
2. Replicate itself in any version of GCC it compiles.
Choose some entry point which changes very rarely so the chances of incompatibility with new code is small.
This would probably keep RHEL with any kernel version tainted for generations of releases without very little chance of being spotted, because there are no changes in the distributed source code of either project
What is best however is the never-ending rotational head movement that some people from the Indian subcontinent use.
Yes indeed, i t is initially very puzzling.
Eventually I learned that it does not mean yes or no or maybe; but simply "I understand you" (this does not imply agreement).
The nature of open source means it MAY be found by others. Sure you have a higher chance and an audit trail but you're making multiple assumptions here:
The difference is that with a closed source OS, if the other devs with access to the code find the backdoor, they can be ordered by the company to STFU or lose their jobs. The NSA only needs to compromise (either legally or illegally) the head of the company and that also gets them every single dev with access to the source.
There's no way for even Linus at his most shouty to completely control what other Linux devs discover. (And, as the previous poster noted, that makes it easy for Linus to tip off another dev on the sly to publicly "discover" and patch the "bug", without exposing Linus to legal issues from not cooperating with the NSA.)
Given the difference between "effortless to compromise" and "insanely difficult to compromise", which would you pick as the safest?
Science is all about firing a drunk pig out of a cannon just to see what happens.
No matter if they had bank accounts, 401K, houses, they were put on the plane and sent home.
Right. Because somewhere else is their home, and they're here illegally (whether by crossing the southern border or overstaying a visa).
If they really want to be here, there are multiple well-defined sets of rules which hundreds of thousands of people use every year to get here legally,
"I don't know, therefore Aliens" Wafflebox1
If the Govenrment asked for Linux, then certainly they asked for Windows, and whereas I trust Torvalds, I don't trust Microsoft - not in a nasty way, just in the sense that they're a very large company over whom the Government has a great deal of power and where very large companies typically are not morally motivated. I don't mean that in a nasty sense, I just mean there's so many people, taking a moral stance - e.g. accepting a cost for a benefit you personally do not see - is in practical terms very, very unlikely.
So I think I have to assume there is a backdoor in Windows. In fact, it's hard to imagine anything anyone could say to reassure me. If the NSA said it was not so, I'd laugh. They twist words with the pure purpose of deception. If MS said so, I'd be thinking they were legally compelled, such that they could not even say that uch a request had occurred. The NSA surely now have a problem, in that I absolutely cannot trust their word - and indeed I cannot see how that trust can be re-established. If there was a full disclosure, that would be a start, followed by a credible reform programme. I don't think either even remotely likely; and by that, I rather think the NSA has either sealed its doom, or *our* doom. The NSA has gone too far. Either they will be replaced, in which case the problem is addressed, or, if they are not replaced, then *we* have a problem, because the NSA is too powerful to remove (and violates all privacy and security).
So, what do you know? turns out this *will* hurt MS sales, because now I *have* to move to Linux. I've been thinking about it for a while, but the cost of learning a new system to do only exactly what you can do already means where I'm very busy, it hasn't happened; but now there is a *need* for me to do, privacy.
yeah, he's a "char star" alright. yup.
if you have char-stars you don't care about voids, really.
--
"It is now safe to switch off your computer."
The kernel of any operating system serves software in the same way governments serve the people. Its taking the politcs out of government. The goal is to make the best system which fairly distributes its resources amounst its users/people most efficiantly so that they maximize their utilization. At the same time it is secure enough to withstand unruly users/citizens and out side agressors.
I wonder if anyone actually takes the responsibility to do this check. Maybe there are GCC binaries in the wild which replicate a backdoor.
Even if there were, you need only recompile your gcc source with llvm, icc, visual studio, or basically anything that isn't gcc to get a new compiler that won't replicate the backdoor any more. For extra fun, randomise the order of this compiling that compiling something else so that even backdoor reinsertions that cross the vendor boundary will eventually fail. Or write your own C++ interpreter in Python/Perl/whatever and use it to (very slowly) run gcc on itself - even if it takes a week you'll have a clean binary at the end. Yes, hiding such a backdoor seems scary to the untrained eye. It's also trivial to get rid of if you're paranoid enough to care.
How about just the UK and France? Both have a "special relationship" with the USA, so can easily be getting the same information on how to snoop on your stuff as the NSA do.
So are you fine with the UK government, a foreighn power, snooping through your e-mails?
No?
THEN WHY THE FUCK IS IT OK FOR THE NSA TO SNOOP THROUGH MINE?
Morons.
You even say of your spying agencies "Well, I expect the agency to be spying on foreigners, but NOT to spy on me!!!". Except where they're spying on you, in which case "It's OK for them to spy on me".
Seems we need reminding of this classic by Ken Thompson... there are no changes in the distributed source code of either project
Someone would have found it with a debugger. Sure, they could change the compiler to insert code into a debugger to hide the patch. But this rapidly gets so complex and error-prone that the bloat would be noticed and it would fail to spot all debuggers and patch them all. It's an interesting theoretical attack, but not practical in the long run.
Use gcc to compile clang..
Use clang to recompile gcc..
Add more compilers to the mix..
The more you do this, the greater the chance of an incompatibility with the backdoor code either resulting in it being removed, or causing unexpected and easily noticed problems.
http://spamdecoy.net - free throwaway anonymous email - avoid spam!
Why bother asking Linus to put a backdoor in Linux when it's just easier to ask Intel putting a backdoor in their processors?
Who cares if he got asked. I can ask for a lot of things too, but what I actually get is what matters. What did the government get?
Probably a rude explanation about why they know fuck all about how kernel development works :)
I dont read
Worrying about compromise of the Linux or Windows kernel is foolish - they're so large, they could have anything hidden inside and you'd never find it (searching for such is literally uncomputable). Begin your concerns with the device drivers from who knows where that are put into place by your motherboard BIOS or EFI boot systems. Conventional operating systems are entirely dependent on them, and they're completely beyond your ability to inspect or trust. And the Open Source variations have the same issue as the operating systems - large, monolithic blocks of code impenetrable to analysis.
You fear what you know about. Fear, instead, what you don't.
Comment removed based on user account deletion
Judges have ruled that the NSA could do these things - when the NSA lied to the judges about what they were doing and how. Some of those judges are pretty pisses off now that they know how the subpoenas were abused, so I wouldn't think think those rulings definitively say what NSA is doing is in fact legal. The judges who made the rulings don't think they approved what was actually going on.
What has been snuck past linus and the other code reviewers. Honestly Linus needs to do a call for people to comb through and look specifically for sneaky things. It's not hard to make something look innocent in C but instead it does evil. http://www.ioccc.org/ for example. or more scary... http://underhanded.xcott.com/
Linux needs a security team that is double checked by a team outside the USA so it can be the ONLY OS that can state, "Not compromised by the NSA"
Do not look at laser with remaining good eye.
It's ILLEGAL for the NSA to spy on Americans, and for good reason. That doesn't mean it's OKAY for them to spy on everyone else, but at least it's LEGAL.
As a US citizen, I'd rather China spy on me than the NSA. The reason is because China isn't going to try to "bust" me on a minor and erroneous charge. For example, there is a porn star named Ann Howe aka Melissa who started in porn when she was 20. She looks young, so several people have been busted for "child porn" for having pics of her when she was 20-25 years old. I don't want my government spying on my internet usage because my government will charge me with child porn based on a chick in her twenties. The Chinese government doesn't give a shit what porn I see. Therefore yes, it's less bad for a government to spy on foreigners - even when I am the foreigner.
Think this this is the most salient point in the whole presentation:
The act of breaking into a computer system has to have the same social stigma as breaking into a neighbor's house. It should not matter that the neighbor's door is unlocked.
Time and time again I hear the old argument "Why not,I got nothing to hide" as it relates to computer access and spying. Present the same person with evidence that their house was accessed while they were out, their car was accessed without their permission and watch the reaction (most likely some variation of anger). People need to be taught that their digital world is just as tangible, just as important as their physical world.
Two questions that would great to put in front of world citizens today,
1 - How would you feel if the government went into your home every day without permission and looked through all your personal property, making copies of all your personal information
2 - How would you feel if the government accessed your personal computer, phone calls, emails, chats, and texts every day, making copies of everything you express and saving it for an unknown length of time?
When outrage is balanced between both is when the people will be able to make a change..
(That was a great read and while just a lowly Programmer, I was fascinated by what Mr. Thompson presented even as I realized there would be no way for me to ever know or change such a situation.)
Life is a great ride, the vehicle doesn't matter
If a judge feels he was deliberately misled, then he could issue a bench warrant for the arrest of the person who misled him. He could put the man on the stand and compel his testimony.
Apparently, the judges are only pissed enough to say they are pissed.
In reality, slipping a backdoor into Linux is much easier: just code it into a proprietary wireless firmware blob which is already a part of the (non-free) kernel distributed at linux.org. The mal-firmware can then spy and report directly from the network card, or use DMA to elevate itself to ring 0 on the main CPU. What makes this scenario most FUN is the sheer likelihood of such a backdoor being in place RIGHT NOW, within the official Linux git repo, since no approval or knowledge by Linus would be required to slip it in.
Just for your information, I'm Belgian :-)
Oh no! Everyone, quick, look for a dead body. There must be one around here somewhere.
If you think I voted for Trump because of this post, you're wrong. I voted for Dr. Jill Stein of the Green Party. Again.
From the description of the study, it seems to me that people who have formed an opinion won't change it just because they see a single piece of potentially falsified or misleading evidence. For example (looking at one of the experiments), if someone has an opinion on joblessness in the US - which might bring in factors of job stability, hours worked or attainment of a living wage - seeing a single graph on number of employed people in recent years does not allow us to conclude that joblessness has been reduced under Obama, unless you have a very primitive interpretation of "joblessness".
The only damning conclusion is that some academics are so arrogant that they assume test subjects must be faulty if they don't immediately believe the academic's interpretation of some data presented to them.
Learning math, and being shown that an equation is incorrect, one readily accepts that. Things like unemployment, climate change, etc., aren't about concrete objective things, but instead are really various facets of one's ideology. Ideology, like religion is hard to change and pretty much for the same reason. It is not based on knowledge, but instead on belief.
That can be good or bad, depending on how it is used, but most often, it turns out to be bad. Ideologies often force us to characterize others by stereotypes, not individuals. What is happening in the US Congress and many parts of the world politically, is all based on people holding on to their ideologies and not not listening to the other side. Holding to ideologies instead of the underlying principles leads to the notion of if you aren't with me you are against me and that ultimately leads to disaster for a society by concentrating the power in the hands of a few at the expense of many.
One thing is for certain, you don't change people's ideology with facts. Facts appeal to the rational, logical part of our psyche. Ideology, on the other hand is an emotional response and like love is often anything but logical.
But he is forbidden to talk about it and has to communicate it this way. Reminds me of the proposal to publish your pgp key with the note "this key has not been compromised". When thr government demand the key you remove the note.
One word and makes such a difference. No longer racist.
Because.... it's not racist to want some for whom it's not legal to be here to, well, not be here.
"I don't know, therefore Aliens" Wafflebox1
Torvalds said no while nodding his head yes is a JOKE people, not a fucking admission.
I agree it is a joke but making a joke does not mean there is nothing serious being communicated. The best jokes are usually about topics that are very serious. Maybe it was a joke and nothing more (I certainly hope so) but without more information you cannot actually be certain either way. If he was asked to put a back door in that would hardly be a surprising revelation.
Please, save the tinfoil paranoia for Reddit, and keep the serious tech discussions here.
You think the idea of a backdoor in linux is not a serious tech topic? Besides it's only paranoia if "they" are not actually after you. Recent revelations about the NSA and other government activities clearly demonstrates that being concerned over government snooping is actually quite reasonable.
Fully Countering Trusting Trust Through Diverse Double-Compiling