Archives
Archives
| From: | Rob Kaper <rkaper@×××.nl> | ||
|---|---|---|---|
| To: | Terje Kvernes <terjekv@××××××××.no> | ||
| Cc: | gentoo-dev@l.g.o | ||
| Subject: | Re: [gentoo-dev] possible trojan in openssh-3.4p1 | ||
| Date: | Thu, 01 Aug 2002 08:40:06 | ||
| Message-Id: | 200208011539.05025.rkaper@ism.nl | ||
| In Reply to: | Re: [gentoo-dev] possible trojan in openssh-3.4p1 by Terje Kvernes |
||
| 1 | On Thursday 01 August 2002 15:35, Terje Kvernes wrote: |
| 2 | > if the checksum differ, which it would have, emerge will abort. |
| 3 | > although, emerge logs do sound like a very good idea. |
| 4 | |
| 5 | For optimum security, emerge should check checksums from different locations. |
| 6 | One or two trusted servers (often even the same as the one where the files |
| 7 | reside, although that might not be true for gentoo) can be compromised too |
| 8 | easily. |
| 9 | |
| 10 | Rob |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] possible trojan in openssh-3.4p1 | Spider <spider@g.o> |
| Re: [gentoo-dev] possible trojan in openssh-3.4p1 | Johannes Findeisen <you@×××××.org> |