[mdlug] info about the xz backdoor
Jay
jjn at nuge.com
Sun Mar 31 11:12:54 EDT 2024
Greetings,
On Sun, 31 Mar 2024, LAP wrote:
> On Sun, 31 Mar 2024 10:17:55 -0400 (EDT)
> Jay <jjn at nuge.com> wrote:
>
>>
>> I *think* I'm suposed to look for the existance of LIBLZMA ????
>>
>> Yup, it is there in my Raspbian Buster install...
>>
>> liblzma.so.5 => /lib/arm-linux-gnueabihf/liblzma.so.5 (0xb67d7000)
>>
>> So be clear...what are we looking for?
>>
>
> Yes. That's the thing to look for.
>
> Now do:
>
> xz --version
>
> If you see 5.6.x then you have the backdoor.
>
> Now check if you have an open port to sshd. This will exist if you
> have the sshd daemon running in the background.
Thanks!
I have:
$ xz --version
xz (XZ Utils) 5.2.4
liblzma 5.2.4
And I have SSHD running on all my machines. I'll check their versions
in a few minutes.
--- Jay Nugent
More information about the mdlug
mailing list