Date: Sat, 21 Jul 2001 14:04:25 -0700 From: "Chad R. Larson" <chad@DCFinc.com> To: Mike Meyer <mwm@mired.org> Cc: "Chad R. Larson" <chad@DCFinc.com>, Chris Faulhaber <jedgar@fxp.org>, Tom <tom@uniserve.com>, admin@kremilek.gyrec.cz, freebsd-stable@FreeBSD.ORG Subject: Re: probably remote exploit Message-ID: <20010721140425.B18907@freeway.dcfinc.com> In-Reply-To: <15192.57986.777597.940024@guru.mired.org>; from mwm@mired.org on Fri, Jul 20, 2001 at 09:01:38PM -0500 References: <Pine.LNX.3.96.1010720174942.651C-100000@kremilek.gyrec.cz> <Pine.BSF.4.10.10107200923060.4917-100000@athena.uniserve.ca> <20010720111551.A12442@freeway.dcfinc.com> <20010720141820.C47930@peitho.fxp.org> <20010720140331.A12903@freeway.dcfinc.com> <15192.57986.777597.940024@guru.mired.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> The bottom line is that you need to do the > cvsup/buildworld/installworld with binaries that you trust. That > means either ones that were checksummed before the break-in, or ones > off a release cdrom. I still believe only the CVSup binary itself would have to be off a CD or match the checksum of a CD version (said checksum computed on some other machine, I suppose). After that, the sup/build/install process should be clean. -crl -- Chad R. Larson (CRL15) 602-953-1392 Brother, can you paradigm? chad@dcfinc.com chad@larsons.org larson1@home.com DCF, Inc. - 14623 North 49th Place, Scottsdale, Arizona 85254-2207 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010721140425.B18907>