Date: Wed, 18 Aug 2004 18:35:29 +0000 From: "Thordur Ivar B." <thib@mi.is> To: freebsd-security@freebsd.org Subject: Re: chfn, date, chsh INFECTED according to chkrootkit Message-ID: <20040818183529.5c52521b.thib@mi.is> In-Reply-To: <20040818123706.T887@acropolis.argolis.org> References: <20040818121102.95460.qmail@web52402.mail.yahoo.com> <20040818142511.390043af.thib@mi.is> <20040818144948.GA55534@pc5.i.0x5.de> <20040818162355.08596948.thib@mi.is> <20040818123706.T887@acropolis.argolis.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 18 Aug 2004 12:41:42 -0400 (EDT) Matt Piechota <piechota@argolis.org> wrote: > On Wed, 18 Aug 2004, Thordur Ivar B. wrote: > > > Yes ofcourse you will need to trust your own toolchain and compiler (I keep > > "trusted" binarys on CD to use in cases like this. (And for post-mortem > > inspection.) > > I'm curious, where do the "trusted" binaries come from? In theory, > the FreeBSD build machine could have been hacked a long time ago and the > hack keeps propagating. > > -- > Matt Piechota Note the "" around trusted. There is no way (besieds manually going through the entire src-tree to be sure that the sources are "trust worthy" but I have the highest confident of the administrative personnel wich keep's the source safe and the machines uncomprimised and the developers in general. If I did not "trust" them I would simply shutdown my machines, remove the caples and throw it out the window. My $0.05 -- Kv, thib[att]mi{dot}is A man can do as he will, but not will as he will. -- Arthur Schopenhauer
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040818183529.5c52521b.thib>