On Thu Nov 23, 2000 at 09:13:46AM -0800, Jean Meloche wrote: I've already replied to Jean personally on this, but I will write here for the benefit of everyone else. The ld.so update was removed because the problem we were encountering wasn't in the ld.so package. Jean obviously got in there in a slim window of time when it was on the mirrors (before they got updated again). It was a legitimate package (not a trojan or hack), but was never announced because we are not making an update for it. If anyone did manage to download and install the ld.so that was briefly on updates, I would recommend downgrading to the release version of ld.so (ld.so-1.9.11-4mdk) or if you are using cooker, to the latest version in cooker (-7mdk I believe). Thanks. > Hi... > > I use MandrakeUpdate ona couple of 7.2 systems. > Yesterday, as part of the normal updates, the > package > > ld.so-1.9.11-7.1mdk.i586.rpm > > showed up on my home computer. Later when I > ran MandrakeUpdate on the other computer, this > same package did not show up. > > I checked the updates ftp sites and there is > no ld.so updates. I checked cooker and the > current version is > > ld.so-1.9.11-7mdk.i586.rpm > > Can anyone explain the mystery? > > More generally, how hard is it for an attacker > to masquarade as a true mandrake update site? > > > I'm not on the list... Please reply to [EMAIL PROTECTED] > > Many thanks > > Keep in touch with http://mandrakeforum.com: > Subscribe the "[EMAIL PROTECTED]" mailing list. -- [EMAIL PROTECTED], OpenPGP key available on www.keyserver.net 1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD - Danen Consulting Services www.danen.net, www.freezer-burn.org - MandrakeSoft, Inc. www.linux-mandrake.com Current Linux uptime: 8 days 18 hours 16 minutes.
Keep in touch with http://mandrakeforum.com: Subscribe the "[EMAIL PROTECTED]" mailing list.
