Linux system compromised by backdoor Trojan
Linux system compromised by backdoor Trojan
There's been some breaking news, Linux system compromised by backdoor Trojan. This has got something to do with the Unreal gaming client for Linux.
I hope the Warzone2100 administrators have the download servers secured, nice and tight. Just checking
I hope the Warzone2100 administrators have the download servers secured, nice and tight. Just checking
"Speak when you are angry and you will make the best speech you will ever regret."
-- Ambrose Bierce
-- Ambrose Bierce
- Saberuneko
- Regular
- Posts: 558
- Joined: 15 Jan 2010, 18:20
- Contact:
Re: Linux system compromised by backdoor Trojan
I'm sure that vulnerability will be fixed in question of days, as always happens with linux software.
Re: Linux system compromised by backdoor Trojan
1. Unreal is an IRC daemon, not a gaming client.
2. Warzone doesn't run its own IRC servers; it uses FreeNode.
P.S. Read the first line of the article you link to
2. Warzone doesn't run its own IRC servers; it uses FreeNode.
P.S. Read the first line of the article you link to
[Author's Note: The article has been modified to correct the assertion that Unreal IRC has any relation to Unreal--the first-person shooter developed by Epic Games.]
Re: Linux system compromised by backdoor Trojan
Well I'll be damned, it wasn't there when I read itZarel wrote:P.S. Read the first line of the article you link to[Author's Note: The article has been modified to correct the assertion that Unreal IRC has any relation to Unreal--the first-person shooter developed by Epic Games.]
"Speak when you are angry and you will make the best speech you will ever regret."
-- Ambrose Bierce
-- Ambrose Bierce
Re: Linux system compromised by backdoor Trojan
A little something that every Linux user here should know to secure their systems,
Five tips for improving Linux security
Five tips for improving Linux security
"Speak when you are angry and you will make the best speech you will ever regret."
-- Ambrose Bierce
-- Ambrose Bierce
Re: Linux system compromised by backdoor Trojan
You know, this is also a good reason to not allow 3rd parties to make warzone builds, since you never know what they stick in them.
The devs should make a md5 checksum of the warzone2100.exe file.
The devs should make a md5 checksum of the warzone2100.exe file.
Re: Linux system compromised by backdoor Trojan
We used to have them. They'll be back once I find a good place on the Download page to stick them.Crymson wrote:You know, this is also a good reason to not allow 3rd parties to make warzone builds, since you never know what they stick in them.
The devs should make a md5 checksum of the warzone2100.exe file.
Honestly, checksumming should be a feature of HTTP, not something you have to do manually.
Re: Linux system compromised by backdoor Trojan
How about right next to the files they go with?We used to have them. They'll be back once I find a good place on the Download page to stick them.
Re: Linux system compromised by backdoor Trojan
That looks too ugly and confusing. Use JS to make a dropdown or something...stiv wrote:How about right next to the files they go with?We used to have them. They'll be back once I find a good place on the Download page to stick them.
Re: Linux system compromised by backdoor Trojan
Define "right next to". To the right of? To the left of? Above? Below? Should we explain what they are, or just give them a string and hope people who don't understand what they are will ignore it?stiv wrote:How about right next to the files they go with?
Re: Linux system compromised by backdoor Trojan
I suggest that you don't mention what MD5 is meant for, but do provide a link to some authentic documentation recommending the use of MD5 checksum, and display the text See why using MD5 is recommended or some other appropriate wordings.Zarel wrote:Should we explain what they are, or just give them a string and hope people who don't understand what they are will ignore it?
P.S: Personally, I would prefer the checksum displayed, to the right of the Download button for the game.. But it's your call..
"Speak when you are angry and you will make the best speech you will ever regret."
-- Ambrose Bierce
-- Ambrose Bierce
- lav_coyote25
- Professional
- Posts: 3434
- Joined: 08 Aug 2006, 23:18
Re: Linux system compromised by backdoor Trojan
thats all well and good, but, who reads anymore, everyone just wants to get to the good stuff, to hell with reading the manual or the READ ME.txt or whatever it is called .... yes i am being somewhat sarcastic.... everyone should read the manual at least once.
Re: Linux system compromised by backdoor Trojan
If you don't want to put the text next to it, you could have a md5 link, or just put it in the release announcement ?
lav_coyote25, you think people can't read these days?
lav_coyote25, you think people can't read these days?
Re: Linux system compromised by backdoor Trojan
Good idea; I'll do that.j0shdrunk0nwar wrote:I suggest that you don't mention what MD5 is meant for, but do provide a link to some authentic documentation recommending the use of MD5 checksum, and display the text See why using MD5 is recommended or some other appropriate wordings.
But we often have two download buttons next to each other - see the Mac OS X version on the Download page, or the Videos. Where would we put the MD5 then?j0shdrunk0nwar wrote:P.S: Personally, I would prefer the checksum displayed, to the right of the Download button for the game.. But it's your call..
Re: Linux system compromised by backdoor Trojan
Ah, yes, would get too crowded..Zarel wrote:But we often have two download buttons next to each other - see the Mac OS X version on the Download page, or the Videos. Where would we put the MD5 then?
"Speak when you are angry and you will make the best speech you will ever regret."
-- Ambrose Bierce
-- Ambrose Bierce