[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: OpenBSD rootkit?
On Sun, Jul 14, 2002 at 09:17:16AM +0200, Przemyslaw Frasunek wrote:
> Recently one of my OpenBSD 3.0 boxes got compromised. The attacker
> used OpenSSH exploit and installed trojaned sshd binary. There were
> obvious signs of compromise:
And what exactly is your excuse of not following the errata and
obviously never patching your system ?
You must have lived under a rock the last months if you still don't
know that OpenSSH < 3.4 is vulnerable.
> Have anyone seen this before?
Sure, there are even reports of OpenBSD honeypots who caught some
stupid script kiddies.
Yes, there are rootkits.
I just don't get why machines are still compromised although we
announce on every channel that there are patches.