Bugtraq mailing list archives

Re: heanet.dl.sourceforge.net hacked?

From: Marshall Eubanks <tme () multicasttech com>
Date: Wed, 30 Apr 2008 13:43:40 -0400

Sourceforge and slashdot had server issues today.

<http://news.netcraft.com/archives/2008/04/30/slashdot_sourceforge_back_online_after_outage.html>


Regards
Marshall

On Apr 30, 2008, at 12:23 PM, Rainer Duffner wrote:

Michael Scheidell schrieb:
or have wrong file?
in attempting to upgrade png (due to security problem), we tried topull from sourceforge mirrors.(note below, libpng says file size for libpng-1.2.27.tar.bz2 withscripts should be 641193) heanet has a bigger file.
other sourceforge.net mirrors have it right.
Was heanet.dl hacked? are some people downloading a trojanizedversion of png?
all attempts (in the past) to contact sourceforge had been useless.

http://www.libpng.org/pub/png/libpng.html
Attempting to fetch from http://heanet.dl.sourceforge.net/sourceforge/libpng/.fetch: http://heanet.dl.sourceforge.net/sourceforge/libpng/libpng-1.2.27.tar.bz2: size mismatch: expected 641193, actual 804821
I now get identical files (well, at least from switch.ch and heanetand surfnet.
cheers,
Rainer

Current thread:

heanet.dl.sourceforge.net hacked? Michael Scheidell (Apr 30)
- Re: heanet.dl.sourceforge.net hacked? Pieter de Boer (Apr 30)
- Re: heanet.dl.sourceforge.net hacked? Rainer Duffner (Apr 30)
  - Re: heanet.dl.sourceforge.net hacked? Marshall Eubanks (Apr 30)
- <Possible follow-ups>
- Re: heanet.dl.sourceforge.net hacked? mirrors (Apr 30)
- Re: Re: heanet.dl.sourceforge.net hacked? securityfocus . com (Apr 30)