tech-security: Re: attempt to plant a back door in the Linux kernel

Subject: Re: attempt to plant a back door in the Linux kernel
To: Jason Thorpe <thorpej@wasabisystems.com>
From: Steven M. Bellovin <smb@research.att.com>
List: tech-security
Date: 11/08/2003 17:00:05

In message <1D073B72-1214-11D8-928B-000A957650EC@wasabisystems.com>, Jason Thor
pe writes:
>
>On Nov 7, 2003, at 10:41 AM, Steven M. Bellovin wrote:
>
>> The MSNBC story ( http://www.msnbc.com/news/990343.asp?0si=- )
>> noted that there was a security problem in CVS.
>
>Err, I thought it was the BK server that was compromised?
>

The impression I had was that they ran a CVS mirror.  I could be wrong, 
of course.

		--Steve Bellovin, http://www.research.att.com/~smb