http://blog.linuxmint.com/?p=2994
Quotes:
"Beware of hacked ISOs if you downloaded Linux Mint on February 20th!"
"We were exposed to an intrusion today. It was brief and it shouldn’t impact many people, but if it impacts you, it’s very important you
read the information below."
"Hackers made a modified Linux Mint ISO, with a backdoor in it, and
managed to hack our website to point to it."
"As far as we know, the only compromised edition was Linux Mint 17.3 Cinnamon edition."
"If you downloaded another release or another edition, this does not
affect you. If you downloaded via torrents or via a direct HTTP link,
this doesn’t affect you either."
"Finally, the situation happened today, so it should only impact
people who downloaded this edition on February 20th."
"The hacked ISOs are hosted on 5.104.175.212 and the backdoor
connects to absentvodka.com."
"Both lead to Sofia, Bulgaria, and the name of 3 people over there.
We don’t know their roles in this, but if we ask for an
investigation, this is where it will start."
This would be a good time for Cinnamon users to try Douane Firewall.
https://github.com/Douane/Douane/wiki/Compilation
http://www.ghacks.net/2016/02/21/linux-mint-hacked-iso-images-compromised/
"If you run Linux, use the command md5sum nameofiso.iso, e..g
md5sum linuxmint-17.3-cinnamon-64bit.iso
The ISO image is clean if the signature matches
one of those listed below..."
Well, don't do that. It takes 60 seconds on a Pentium 4
computer, to "fix" an ISO so it has the correct MD5SUM.
MD5 is compromised, and is no good for this purpose.
Paul <nospam@needed.com> writes:
http://www.ghacks.net/2016/02/21/linux-mint-hacked-iso-images-compromised/ >>
"If you run Linux, use the command md5sum nameofiso.iso, e..g
md5sum linuxmint-17.3-cinnamon-64bit.iso
The ISO image is clean if the signature matches
one of those listed below..."
Well, don't do that. It takes 60 seconds on a Pentium 4
computer, to "fix" an ISO so it has the correct MD5SUM.
Go on then, produce a second well-formed ISO image that hashes to e71a2aad8b58605e906dbea444dc4983.
Or if you’d prefer to work with a smaller first preimage:
$ cat /etc/motd
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
$ md5sum /etc/motd
9830e3dbb6a828f2cc824db8db0ceaf7 /etc/motd
Clock’s ticking!
MD5 is compromised, and is no good for this purpose.
MD5’s collision resistance is well known to be completely broken, but
this application does not depend on collision resistance.
It’s certainly somewhat disappointing to see it still used in 2016, but that’s no excuse for spreading FUD.
Johnny <johnny@invalid.net>:
This would be a good time for Cinnamon users to try Douane Firewall.
https://github.com/Douane/Douane/wiki/Compilation
I would if there were a compiled download or better a PPA or better
still, if it were in the Mint or Ubuntu repos.
Yrrah
This would be a good time for Cinnamon users to try Douane Firewall.
I would if there were a compiled download or better a PPA or better
still, if it were in the Mint or Ubuntu repos.
Maybe after this, they will add it to the repositories.
I have to admit, it's hard to get the Douane firewall working, and I
imagine most people just gave up.
(useful info deleted)
"Beware of hacked ISOs if you downloaded Linux Mint on February 20th!"
Johnny <johnny@invalid.net>:
This would be a good time for Cinnamon users to try Douane Firewall.
I would if there were a compiled download or better a PPA or better
still, if it were in the Mint or Ubuntu repos.
Maybe after this, they will add it to the repositories.
I have to admit, it's hard to get the Douane firewall working, and I
imagine most people just gave up.
(useful info deleted)
Thanks for the info. I think the author needs help. I know far too
little about the matter, so I can't be of assistance.
Yrrah
http://blog.linuxmint.com/?p=2994
Quotes:
"Beware of hacked ISOs if you downloaded Linux Mint on February 20th!"
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 292 |
Nodes: | 16 (2 / 14) |
Uptime: | 197:16:00 |
Calls: | 6,617 |
Calls today: | 1 |
Files: | 12,168 |
Messages: | 5,315,787 |