Sendmail Package Carrying Trojan Horse

Sendmail Package Carrying Trojan Horse

Someone has inserted a Trojan horse into a recent version of the source code for the widely deployed Sendmail package, exposing an unknown number of servers to remote compromise.

The files Sendmail.8.12.6.tar.gz and Sendmail.8.12.6.z, available from the open source Sendmail Consortium, are both compromised, according to an advisory released late Tuesday by the CERT Coordination Center. Currently, CERT officials say that it appears only files downloaded via the ftp.sendmail.org server contain the malicious code.

The Trojaned version of the Sendmail package began showing up on Sept. 28 and security officials are unsure how many users downloaded the corrupted files before the FTP server hosting them was disabled on Sunday.

Read more.....

Note: Article includes links to CERT help and fixes. (This pertains more to Linux than to Windows but is important nonetheless.)

 

It is about time some of the hackers start picking on Linux
for a change to reveal some of it's weaknesses.
You see bragging of Unix. well that system has been around since the 70's so that has givin developers plenty or time to iron out the security flaws. Windows has been around since the mid eighties though. They are getting most of the bugs out..
You see atricles on how people using Winsows are stupid and inexperienced. These people say an experienced computer user will use Linux, ect. Well some of us still need to help WIndows users since they are the majority and will for some time..
I was a bit offended with that article. It can be found here on a link Jooske posted a few weeks ago while on her port 137 attack kick.
Internet Storm Center...........
Look at the article "Is Linux more serure than Windows"
towards the bottom right.

http://isc.incidents.org/