1 |
Pat, Neil, Gentoo devs, KDE friends: |
2 |
|
3 |
>From #kde-freebsd: |
4 |
|
5 |
<knu> ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-3.4p1.tar.gz is trojaned |
6 |
<tap> nothing on google either |
7 |
<knu> steals /etc/passwd to send to a certain IRC network and removes itself |
8 |
<Capzilla> knu : says who |
9 |
<knu> see the code, but never run make |
10 |
<knu> openbsd-compat/{Makefile.in,bf-test.c} |
11 |
|
12 |
Looks like some weird stuff is in there indeed. |
13 |
|
14 |
md5sum of the binary that appears to be trojaned: |
15 |
|
16 |
3ac9bc346d736b4a51d676faa2a08a57 openssh-3.4p1.tar.gz |
17 |
|
18 |
As far as I can see, compiled binaries are *not* affected, but you might |
19 |
want to carefully examin this more closely (I'm waiting with upgradepkg en |
20 |
emerge on my systems until there's some more info). We've had a few hoaxes |
21 |
recently, but this looks suspicious. |
22 |
|
23 |
My apologies if this is just a storm in a glass of water. |
24 |
|
25 |
Rob |
26 |
-- |
27 |
Rob Kaper | Gimme some love, gimme some skin, |
28 |
cap@×××××.com | if we ain't got that then we ain't got much |
29 |
www.capsi.com | and we ain't got nothing, nothing! -- "Nothing" by A |