| 1 |
On Fri, 5 Dec 2003 09:33:32 -0600 |
| 2 |
"Russell Adams" <RLAdams@××××××××××××××.com> Add to Address Book wrote: |
| 3 |
|
| 4 |
> This is the way HLUG and I caught the trojaned libpcap/tcpdump sources |
| 5 |
> on the home site a while back. (http://www.adamsinfoserv.com/trojan.html) |
| 6 |
> |
| 7 |
> MD5's were good on the mirrors, but failed when downloading from the |
| 8 |
> home site. |
| 9 |
> |
| 10 |
> To be thorough, check the validity of the files you download from |
| 11 |
> multiple sources. Switch mirrors and then force a download from the |
| 12 |
> home site for that package and watch your checksums. |
| 13 |
> |
| 14 |
> Russell |
| 15 |
> |
| 16 |
|
| 17 |
you could also do a tar -tv[zj]f /usr/portage/distfiles/<file> to see if the archive is even good, if not you'll get errors from gzip or bzip2 at some point, but just make sure you backed up in case there is some exploit with gzip or bzip2 that its trying to do |
| 18 |
|
| 19 |
|
| 20 |
-----BEGIN GEEK CODE BLOCK---- |
| 21 |
Version: 3.1 |
| 22 |
GCS/CM/E/M/S/O d--(-) s:+>:- |
| 23 |
a--->-->->>+>++>+++$ C+++>++++$ UL++++>++++$ |
| 24 |
P+++>++++$ L++++>++++$ !E-? W++>++$>+++$ |
| 25 |
N++>* !o? !K? w--->---$ O-- M-@ !V--? PS+++(++(+((-)))) |
| 26 |
PE Y+(++)@ PGP+++(++) t+++>+++$ 5--(-)@ X++@>+++@ |
| 27 |
R+(++)@ tv+++@>++@ b+>++ DI++++ D+++@ G+++>++++ |
| 28 |
e>+$>++$>+++$>++++$>+++++$ h+>++ r*(--(++))@ !y+>-->->+++@ |
| 29 |
-----END GEEK CODE BLOCK----- |
Archives