OpenSSH Trojan

James Iwanek chthon at chthon-uk.com
Thu Aug 1 18:24:10 PDT 2002


Tristan Mills wrote:

> Just come across this,
> 
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=394609+0+current/freebsd-security
> 
> Summary, some versions of openssh-3.4p1 are trojaned and produce a shell
> script which tries to connect to a remote host.
> 
> My source tarball doesn't seem to be affected so it may be a recent
> thing.
> 
> Tristan
> 

all copies of openssh-3.4 released after august the second should be ok (or 
so the openssh people claim) ;-)

-----
Jay
-- 
Unsubscribe: send email to listar at linuxfromscratch.org
and put 'unsubscribe lfs-security' in the subject header of the message



More information about the lfs-security mailing list