If you are currently using irssi-0.8.4, be it installed via Fink or manually, please read this: http://real.irssi.org/?page=backdoor
To sum it up, the configure script of the irssi 0.8.4 tar ball was setup with a backdoor by some hackers. As a consequence, if you have built irssi via Fink or manually, you may have been affected by this backdoor. Getting irssi via the Fink binary distrubtion is *NOT* affected by the backdoor in any way, nor are the binaries you end up if you build Irssi manually/via Fink. To find out if the tar ball you have used to to build Irssi was affected, run this command: md5sum /sw/src/irssi-0.8.4.tar.bz2 The proper, unaffected source will return this: b78413f8596dc2ec190ed7e831a746a8 irssi-0.8.4.tar.bz2 If you get a different result, you may have been affected by the backdoor attack. In case you didn't perform a reboot since that backdoor was installed, consider doing so - the backdoor will only be open until you reboot. In addition, you should check your computer for traces of intruders. It is in theory possible that the backdoor on your machine, while it was open, was used to install a more permanent backdoor on your machine, although it seems to be not very likely right now. The source tar ball hosted at the irssi web site is now a "clean" version again. If you believe you are currently having an affected tar ball, you can get the new one via "fink fetch irssi". If you want to be on the extra safe side, perform a "fink rebuild irssi" afterwards to use that new source to build a new irssi binary, although at the current state of information, this is not required for your safety. Thanks for listening, Max -- ----------------------------------------------- Max Horn Software Developer email: <mailto:[EMAIL PROTECTED]> phone: (+49) 6151-494890 _______________________________________________________________ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
