OpenSSH Trojan

James Iwanek chthon at
Thu Aug 1 18:24:10 PDT 2002

Tristan Mills wrote:

> Just come across this,
> Summary, some versions of openssh-3.4p1 are trojaned and produce a shell
> script which tries to connect to a remote host.
> My source tarball doesn't seem to be affected so it may be a recent
> thing.
> Tristan

all copies of openssh-3.4 released after august the second should be ok (or 
so the openssh people claim) ;-)

Unsubscribe: send email to listar at
and put 'unsubscribe lfs-security' in the subject header of the message

More information about the lfs-security mailing list