so much for the Ken Thompson
Apr 08, 2004
4:05 PM EST
|Ken Thompson created a back-door in a Unix product that was used by nobody. Well, "nobody" if you compare it to the widespread usage and peer-review of the modern Linux. That argument is fallacious. Thompson's backdoor escaped scrutiny because very few people looked at that code, and that's because there was no motivation to do so. Nowadays, the Linux code is analysed by thousands of security specialists on a permanent basis. The "Ken Thompson backdoor" could never happen.|
Apr 10, 2004
11:49 PM EST
|Ken Thompson didn't put a backdoor anywhere.
He did, however, explain how to create one in such a way that it can't bee seen unless you read the compiler-generated ASM. No amount of looking at source code can find that kind of backdoor. That's the whole point of his paper.
Come on, it's Ken Thompson. Do you think he did the obvious thing?
I suggest you read his paper before commenting on it.
Posting in this forum is limited to members of the group: [ForumMods, SITEADMINS, MEMBERS.]
Becoming a member of LXer is easy and free. Join Us!