Contributed by jose on from the checksums-are-just-for-this-purpose dept.
how does this affect both the base system and ports? since the intruder had root access on the box, checksums should mean a big zero, what does one do to make sure their beloved boxes are safe?"
Don't forget that the checksums the ports tree uses are held on OpenBSD servers, not the compromised distfile server. Secondly, the checksums are widely distributed, so someone is bound to spot it (as they did with other backdoored distfiles). Thirdly, this is exactly what the systrace patch for the ports tree is for.
(Comments are closed)