Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Situation remains cloudy.

From: BCreitz () rockvillemd gov
Date: Fri, 22 Aug 2008 11:47:58 -0400
dailydave-bounces () lists immunitysec com wrote on 08/22/2008 10:05:21 AM:

1. Fedora's package signing box was compromised by unknown parties.
Fedora does not think the key's passphrase was compromised however. They
are changing their keys.

2. RedHat's package signing key was used to sign trojaned OpenSSH
packages. RedHat does not think these were distributed via the Red Hat
Network auto-update service.



http://www.redhat.com/archives/fedora-announce-list/2008-August/msg00012.html


http://rhn.redhat.com/errata/RHSA-2008-0855.html


Great, Red Hat provides a script to check my systems for me.  Now I just
have to SSH in to my boxes to run that... oh, wait second...

Ben
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: