DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 6th July 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default Popular FTP package (vsftp) tarball poisoned

From http://www.theregister.co.uk/2011/07...r_shenanigans/

Quote:
A backdoor has been discovered in the source code of a widely used FTP package.

Version 2.3.4 of the source code for vsftpd – billed as probably the most secure and fastest FTP server for Unix-like systems – was replaced with a compromised version with an invalid signature. The dodgy tarball version of the code was uploaded onto the main download site and available for around three days before the hack was detected by Chris Evans, the author of vsftpd, on Sunday (3 July).
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
package questions sharris FreeBSD Ports and Packages 4 4th July 2011 10:23 AM
Google Image Search poisoned Results nilsgecko General software and network 0 13th May 2011 02:17 AM
Gawker break-in: 123456 is a popular password Carpetsmoker News 1 15th December 2010 05:01 PM
What came first: the port or the package? rpindy General software and network 4 27th June 2010 11:15 PM
tcpdump package bsdnewbie999 OpenBSD Packages and Ports 6 30th March 2009 05:24 PM


All times are GMT. The time now is 08:38 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick