Archives
Archives
| From: | Henti Smith <bain@××××××.org> |
|---|---|
| To: | "gentoo-user@g.o" <gentoo-user@g.o>, "gentoo-dev@g.o" <gentoo-dev@g.o> |
| Subject: | [gentoo-dev] libpcap & tcpdump trojan information |
| Date: | Wed, 13 Nov 2002 13:32:13 |
| Message-Id: | 20021113153138.117bbb14.bain@reaper.org |
| 1 | some might notice this on /. http://slashdot.org/article.pl?sid=02/11/13/1255243&mode=flat&tid=172 |
| 2 | |
| 3 | Trojan Found in libpcap and tcpdump |
| 4 | |
| 5 | Members of The Houston Linux Users Group discovered that the newest sources of libpcap and tcpdump available from tcpdump.org were contaminated with trojan code. HLUG has notified the maintainers of tcpdump.org. |
| 6 | |
| 7 | reports here : http://hlug.fscker.com/ and http://151.164.128.17/def-con/ |
| 8 | |
| 9 | following packeges are affected : |
| 10 | |
| 11 | libpcap-0.7.1.tar.gz |
| 12 | tcpdump-3.6.2.tar.gz |
| 13 | tcpdump-3.7.1.tar.gz |
| 14 | |
| 15 | here are md5sums for good packages |
| 16 | |
| 17 | Good sources: |
| 18 | |
| 19 | http://www.ibiblio.org/pub/Linux/distributions/gentoo/distfiles/libpcap-0.7.1.tar.gz |
| 20 | http://www.ibiblio.org/pub/Linux/distributions/gentoo/distfiles/tcpdump-3.6.2.tar.gz |
| 21 | http://www.ibiblio.org/pub/Linux/distributions/gentoo/distfiles/tcpdump-3.7.1.tar.gz |
| 22 | |
| 23 | MD5 Sum 0597c23e3496a5c108097b2a0f1bd0c7 libpcap-0.7.1.tar.gz |
| 24 | MD5 Sum 6bc8da35f9eed4e675bfdf04ce312248 tcpdump-3.6.2.tar.gz |
| 25 | MD5 Sum 03e5eac68c65b7e6ce8da03b0b0b225e tcpdump-3.7.1.tar.gz |
| 26 | |
| 27 | Notice they use gentoo sources as referance for good sources *GRIN* |
| 28 | I think we can then assume gentoo is safe from this trojan :) |
| 29 | |
| 30 | double check just to make sure :) |
| 31 | |
| 32 | Henti Smith |
| 33 | |
| 34 | -- |
| 35 | gentoo-dev@g.o mailing list |