[107761] in Cypherpunks
Re: Trojan Horse tcp_wrappers, USIA hack, etc.
daemon@ATHENA.MIT.EDU (Jim Gillogly)
Fri Jan 22 14:57:04 1999
Date: Fri, 22 Jan 1999 11:40:15 -0800
From: Jim Gillogly <jim@acm.org>
To: cypherpunks@cyberpass.net
Reply-To: Jim Gillogly <jim@acm.org>
Ryan Lackey writes:
> I'm somewhat surprised such attacks have not been more prevalent. Perhaps
> the latest tcp_wrappers modification is the beginning of a new era.
One recent event doesn't look like a real ground-swell to me. There have been
such events in the past as well, including the replacement in two separate
1994 incidents of ftpd and ircII at their main distribution sites with trojan
horse versions. CERT reports also that NetBus and Back Orifice are being
used more frequently to trojanize (ugly neologism alert) Windows boxes.
Certainly this should be a wake-up call to more distributors to include
digital signature verification information with their packages, and to
system administrators to keep more tripwires around.
I note that the Clinton Administration is calling for more funding to help
protect the Internet from nasty people. I wonder whether it's occurred to
them that encouraging strong encryption throughout will help in this regard.
--
Jim Gillogly
Trewesday, 1 Solmath S.R. 1999, 19:27
12.19.5.15.16, 3 Cib 9 Muan, First Lord of Night
