Mailinglist Archive: opensuse-security (409 mails)

< Previous Next >
Re: [suse-security] openssh trojan (alert)
  • From: Anders Johansson <andjoh@xxxxxxxxxxxxxxxxxxxxx>
  • Date: Thu, 1 Aug 2002 11:14:54 +0200
  • Message-id: <200208011114.54090.andjoh@xxxxxxxxxxxxxxxxxxxxx>
On Thursday 01 August 2002 11.01, Christoph Wegener wrote:
> So there is definitively a connection
> attempt to this server - but actually I do not know waht it is good for.
> Could there be some legal reaseon for this?!?

Look at the c source generated by the shell script. If it receives a 'D'
command from this server it spawns a remote shell. I'd say there's an
*illegal* reason for this.

regards
Anders

< Previous Next >
Follow Ups
References