From owner-freebsd-security Tue Aug 6 5: 2:45 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1389537B400 for ; Tue, 6 Aug 2002 05:02:41 -0700 (PDT) Received: from anchor-post-34.mail.demon.net (anchor-post-34.mail.demon.net [194.217.242.92]) by mx1.FreeBSD.org (Postfix) with ESMTP id 78B8243E6E for ; Tue, 6 Aug 2002 05:02:40 -0700 (PDT) (envelope-from kevin@caomhin.demon.co.uk) Received: from caomhin.demon.co.uk ([62.49.21.186]) by anchor-post-34.mail.demon.net with esmtp (Exim 3.35 #1) id 17c32t-000HsO-0Y; Tue, 06 Aug 2002 13:02:39 +0100 Message-ID: Date: Tue, 6 Aug 2002 13:01:28 +0100 To: Fabrizio Ravazzini Cc: freebsd-security@freebsd.org From: Kevin Golding Subject: Re: OpenSSh trojan on fbsd 4.5 References: <20020806113013.1491.qmail@web20105.mail.yahoo.com> In-Reply-To: <20020806113013.1491.qmail@web20105.mail.yahoo.com> MIME-Version: 1.0 X-Mailer: Turnpike Integrated Version 5.01 U Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Someone, quite probably Fabrizio Ravazzini, once wrote: >Hello all I've installed a server on Freebsd 4.5 >Stable. >I know that latest versions of OpenSSH, such 3.2.2p1 >3.4p1 and 3.4 are trojaned. >I think that Openssh on my system is something like >3.0.2, is that right? 2.9 iirc ssh -V will tell you accurately. >Or, is the version of ssh in my box trojaned? >Thanx bye Basically you were only at risk if you installed a later version deliberately, and if you did that from ports you would have still needed to explicitly tell the install to ignore certain security checks. Basically a default install is unaffected. Kevin -- kevin@caomhin.demon.co.uk To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message