So, the word is that the FBI paid developers to plant security vulnerabilities into OpenBSD. I suppose this is the sort of thing that we are to just expect our government to do, right? I use OpenBSD. I use IPSec. This is ME that the government is attacking, not just some nebulous scapegoat "terrorist" organization, or some crackpot dictator controlling vast amounts of oil.

For a government which wants us to trust it to do the right thing, in the absence of over-site with regard to the wiretapping activities of its "intelligence" agencies, this does little to earn that trust. OK, to be fair, I'm basing this on a 3rd hand account posted to an internet mailing list. Will anyone be surprised if it ends up being true?