Update: net/vsftpd backdoor

Nigel Taylor Mon, 04 Jul 2011 04:38:42 -0700

Hi,

Seehttp://scarybeastsecurity.blogspot.com/2011/07/alert-vsftpd-download-backdoored.html

Home Page / Download site has been changed to different provider, updatepatch below.


Builds amd64 - no testing as no code change, just homepage.

Regards

Nigel Taylor


Index: Makefile
===================================================================
RCS file: /home/cvs/ports/net/vsftpd/Makefile,v
retrieving revision 1.30
diff -u -p -r1.30 Makefile
--- Makefile    2 Mar 2011 08:26:19 -0000       1.30
+++ Makefile    4 Jul 2011 11:08:46 -0000
@@ -4,8 +4,9 @@ COMMENT=                ftp daemon which aims to be se

 DISTNAME=              vsftpd-2.3.4
 CATEGORIES=            net
+REVISION =             0

-HOMEPAGE =             http://vsftpd.beasts.org/
+HOMEPAGE =             https://security.appspot.com/vsftpd.html

 MAINTAINER =           Benoit Lecocq <ben...@openbsd.org>

@@ -17,7 +18,7 @@ PERMIT_DISTFILES_FTP= Yes

 WANTLIB=               c crypto util ssl wrap

-MASTER_SITES=          ftp://vsftpd.beasts.org/users/cevans/
+MASTER_SITES=          https://security.appspot.com/downloads/

 ALL_TARGET=            vsftpd

Update: net/vsftpd backdoor

Reply via email to