Just noticed this post about trojaned version of OpenSSH on ftp.openbsd.org. Of course thouse who have been able to hack into ftp.openbsd.org and put trojan might just have access to ftp.openbsd.org (say by stealing password from one of maintainers) or this FTP server may not run OpenBSD at all. But anyway just imagine how this accident can hurt public image of OpenBSD as unbreakable secure system if it turns to be true. I know that security of any system as good as its admin but I'm talking here about public image of OpenBSD.
