[ale] ! Openssh package trojaned...

Jonathan Rickman jonathan at xcorps.net
Thu Aug 1 09:26:47 EDT 2002


On 1 Aug 2002, cfowler wrote:

> Do we need to do anything to our current installs of this ver?

Check your original tarball for the trojan code as reported on bugtraq and
full-disclosure, that is...if you install from source. If you use a
package manager...you can't really be sure until someone figures out
exactly when the code was "blessed".

-- 
Jonathan Rickman
X Corps Security
http://www.xcorps.net


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.






More information about the Ale mailing list