From owner-freebsd-security Thu Aug 1 6:23:13 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9BE3E37B400 for ; Thu, 1 Aug 2002 06:23:09 -0700 (PDT) Received: from thuis.c00lb0x.com (c00lb0x.xs4all.nl [213.84.119.178]) by mx1.FreeBSD.org (Postfix) with ESMTP id CA68143E6E for ; Thu, 1 Aug 2002 06:22:59 -0700 (PDT) (envelope-from tbonex@c00lb0x.com) Received: from mydomain.com (localhost [127.0.0.1]) by thuis.c00lb0x.com (8.12.4/8.12.4/Debian-4) with SMTP id g71DN5cC027525 for ; Thu, 1 Aug 2002 15:23:06 +0200 Received: from 192.168.2.106 (SquirrelMail authenticated user tbonex) by mail.kdevries.com with HTTP; Thu, 1 Aug 2002 15:23:07 +0200 (CEST) Message-ID: <1692.192.168.2.106.1028208187.squirrel@mail.kdevries.com> Date: Thu, 1 Aug 2002 15:23:07 +0200 (CEST) Subject: Re: openssh-3.4p1.tar.gz trojaned From: "DaMastah" To: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.7) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I just updated a couple of servers to openssh 3.4p1 (portable version) running solaris/debian patched with a chroot-patch. I have checked all tar-balls (freshly extracted) and there aren't any bf-test.c files, does that mean I was just in time with the right source code (I downloaded it around 14:00 CET) and that I am trojan clean ? Furtheron when will we know that a clean version has been released ? Are there any more ways to check for the trojanned version ? Thanks Kevin de Vries To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message