Date: Thu, 1 Aug 2002 13:40:56 +0200 (MET DST) From: Mario Pranjic <mario.pranjic@irb.hr> To: Christoph Wegener <cwe@bph.ruhr-uni-bochum.de> Cc: <freebsd-security@FreeBSD.ORG> Subject: Re: openssh-3.4p1.tar.gz trojaned Message-ID: <Pine.GSO.4.32.0208011335560.26397-100000@nippur.irb.hr> In-Reply-To: <1TZW96USXWA5PMB982KGRN1VVT72RNOL.3d491cdb@gonzo>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 1 Aug 2002, Christoph Wegener wrote: > Date: Thu, 01 Aug 2002 13:34:51 +0200 > From: Christoph Wegener <cwe@bph.ruhr-uni-bochum.de> > To: Mario Pranjic <mario.pranjic@irb.hr> > Cc: Shunichi Konno <konno@hal.rcast.u-tokyo.ac.jp>, > Mario Pranjic <mario.pranjic@irb.hr>, freebsd-security@FreeBSD.ORG > Subject: Re: openssh-3.4p1.tar.gz trojaned > > Hi, > well as I mentioned in one of my earlier mails, the tarball on the openbsd repositories are exchanged and infected with a trojan. So it is clear > that the version you just downloaded is infected... Of course. I understand that. But, I wanted your opinion about the openssh that installed yesterday (or the day before, not so sure right now). It has the right md5 checksum and no trojan file in tarball. If I got it right, openssh source tarball has changed in past 24 hourhs on ftp.openbsd.org and that one is infected. If so, I installed the clean version before the one with trojan was put on ftp server. We'll see what will the maintainer say about it (dinoex@FreeBSD.org). Mario Pranjic, dipl.ing. sistem administrator Knjiznica, Institut Rudjer Boskovic ------------------------------------- e-mail: mario.pranjic@irb.hr ICQ: 72059629 tel: +385 1 45 60 954 (interni: 1293) ------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.32.0208011335560.26397-100000>