Subject: Security issue: irssi-0.8.4nb1.tgz
To: None <port-vax@netbsd.org>
From: John Klos <john@sixgirls.org>
List: port-vax
Date: 06/04/2002 16:32:16
Hello,
As some of you may already know, irssi's source tarball was recently
compromised and a backdoor was introduced. See:
http://www.irssi.org/?page=backdoor
http://online.securityfocus.com/news/462
for more information.
Although the 1.5.3 VAX binary packages were only uploaded in the last few
days, there may be a chance that someone installed irssi from the binary
package. If so, remove the package and compile it from source.
The binary package has already been removed from the NetBSD server.
Thanks,
John Klos
Sixgirls Computing Labs