Date: Thu, 01 Aug 2002 11:20:42 +0200 From: Christoph Wegener <cwe@bph.ruhr-uni-bochum.de> To: freebsd-security@freebsd.org Subject: Re: [suse-security] openssh trojan (alert) Message-ID: <HGZU76GFDONTNIHA674FDA8HCQN1V0.3d48fd6a@gonzo>
index | next in thread | raw e-mail
Hi again,
to be a little more concrete: about 10 minutes ago I downloaded the tarball of openssh-3.4p1 which is actually available on ftp.openbsd.org.
I untared it, cd'd to openbsd-compat and did a gcc bf-test.c -o bf-test. After this I did sh bftest > bftest.sh and finally got a shell script which
contains the same as reported on the link below. So there is definitively a connection attempt to this server - but actually I do not know
waht it is good for. Could there be some legal reaseon for this?!?
Christoph
BTW: were are just trying to double-check the sig of the tarball but due to probs with the keyservers didn't have results for now...
--
.-. Ruhr-Universitaet Bochum
/v\ L I N U X Lehrstuhl fuer Biophysik
// \\ >Penguin Computing< c/o Christoph Wegener
/( )\ Gebaeude ND 04/Nord
^^-^^ D-44780 Bochum, GERMANY
Tel: +49 (234) 32-25754 Fax: +49 (234) 32-14626
mailto:cwe@bph.ruhr-uni-bochum.de http://www.bph.ruhr-uni-bochum.de
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
home |
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?HGZU76GFDONTNIHA674FDA8HCQN1V0.3d48fd6a>