give it a rest guys. has anyone ever actually been the victim of some government/corporate/"the man" attack where they slipped trojan openbsd binaries to you?
do you have any idea how hard it really is to mount such an attack? without being detected? and what's the trojan going to do? copy all your secrets to their national citizen oppression center? how do they get their nefarious packets through your firewall without notice? i've download openbsd onto various machines from at least 5 mirrors using 9 isps in 5 countries over the course of 7 years. and you're telling me that every single time, somebody out there was feeding me the bad bits? because if they screwed up even a single time, i could use the good machine to detect the tainted ones. get real.
