The ProFTPD Project team is sorry to announce that the Project's main FTP server, as well as all of the mirror servers, have carried compromised versions of the ProFTPD 1.3.3c source code, from the November 28 2010 to December 2 2010. All users who run versions of ProFTPD which have been downloaded and compiled in this time window are strongly advised to check their systems for security compromises and install unmodified versions of ProFTPD.
To verify the integrity of your source files, use the PGP signatures which can be found here[0] as well as on the FTP servers [0] : http://www.proftpd.org/md5_pgp.html http://www.darkreading.com/authentication/167901072/security/application-security/228500217/open-source-project-server-hacked-software-rigged-with-backdoor-trojan.html -- Best Regards, Masim "Vavai" Sugianto /************************************************************/ Blog (ID) : http://www.vavai.com Excellent Infotama Kreasindo : http://www.vavai.biz Training Zimbra Mail Server : http://bit.ly/h8XzXC /************************************************************/ ______________________________________________ --- Info Milis : http://opensuse.or.id/milis Keluar dari Milis : Kirim email ke [email protected] Manajemen Keanggotaan : http://lists.opensuse-id.org/listinfo.cgi/milis-opensuse-id.org
