Trojan Found in libpcap and tcpdump

← Back to Stories (view on slashdot.org)

Trojan Found in libpcap and tcpdump

Posted by michael on Wednesday November 13, 2002 @01:24AM from the when-your-packet-sniffer-won't dept.

msolnik writes "Members of The Houston Linux Users Group discovered that the newest sources of libpcap and tcpdump available from tcpdump.org were contaminated with trojan code. HLUG has notified the maintainers of tcpdump.org. See our reports here or here."

6 of 486 comments (clear)

So much for peer auditing? by steve.m · 2002-11-13 01:57 · Score: 1, Troll

The trojaned code has been around for almost a year, from the project homepage (where most people would go for the source), and nobody spotted it.

It highlights the fact that a sizeable part of the open source user base either can't read code, or don't want to.
Re:Eventually, this would happen by yatest5 · 2002-11-13 02:13 · Score: 1, Troll

And if I don't remember, this happened befrore. Of course this is one of the biggest strenghts of the Open Source Model.
Code is constantly audited, checked and corrected. If your closed source software has backdoors or trojans...well....who knows but on Open Source is easyly detected.

Yes, what a strength! Yay for open source! When Windows is released with Trojans in nobody notices! Oh, what, it never has? Oh, they check it before it's burnt to CD do they? Oh, they should adopt these open-source practices so they can release trojan-infected code for their customers to find!

Really, this is the most pathetic grabbing at strws I have seen, since, oooh, the last open source fuckup reported on slashdot. Accept, the fuckup, shutup and move on.
--
- Mod parent up! [a] by Anonymous Coward (Score:5) Thurs, June 31, @13:37
Re:as soon as this evening... by jmo_jon · 2002-11-13 02:16 · Score: 1, Troll

MOD PARENT UP

he used the word apt_get
Re:This is dreadful by yatest5 · 2002-11-13 02:17 · Score: 1, Troll

Did Microsoft pay you for lost man-hours when your staff battled Nimda or Code Red? Didn't think so.

Insightful my ass. Did those virii come distributed with the product? Now you're going to tell me there are ABSOLUTELY NO possible security holes in open source software, ever right? Go on...
--
- Mod parent up! [a] by Anonymous Coward (Score:5) Thurs, June 31, @13:37
Re:Eventually, this would happen by Hard_Code · 2002-11-13 02:38 · Score: 1, Troll

"Don't think for a second that Microsoft hasn't put back doored software onto your computer.. that's already been documented."

What a load of crap! Internet Explorer saves your URL/Searches! STOP THE PRESSES! Internet Explorer saves cookies and history! BREAKING NEWS! OMIGOD IT'S A CONSPIRACY! Whoa, Microsoft installed "secret" files! How evil! The system attribute has only been around since, uh, DOS 1.0 or something! What a fucking load of breathless alarmism!

Anybody who has used a Microsoft OS knows about this. Why don't you talk next about "stealth dot files!", or "why Linus Torvalds doesn't want you to cat files in /dev!" or "history file records your actions!"

--

It's 10 PM. Do you know if you're un-American?
Re:One too many? by Iamthefallen · 2002-11-13 02:45 · Score: 1, Troll

So if a Microsoft System gets hacked, it's Microsoft users fault? And if a Linux system gets hacked, it's still Microsoft users fault? Sooo, basically everything is Microsofts fault?

--
Wax-Museum Fire Results In Hundreds Of New Danny DeVito Statues