Linked by Jordan Spencer Cunningham on Mon 14th Jun 2010 23:58 UTC
Bugs & Viruses Recently, the Linux version of UnrealIRCd was discovered to have had a Trojan worm its way into the source code. Even more embarrassing for the developers of Unreal is that the Trojan's been holding open the backdoor in the source code since November of 2009-- not very recently. And, of course, bloggers and press in general are taking the opportunity of another breach in Linux security to point out doomsday devices that don't really exist.
Permalink for comment 430103
To read all comments associated with this story, please click here.
RE: Comment by yoshi314@gmail.com
by WereCatf on Tue 15th Jun 2010 12:04 UTC in reply to "Comment by yoshi314@gmail.com"
WereCatf
Member since:
2006-02-15

in this case - 6 months, and nobody noticed? that kind of failure cannot possibly be described correctly.

The explanation is rather simple: it was not the main server that was compromised nor any distribution repositories, only mirror servers. As such the malware issue couldn't be very widespread. Even more so that UnrealIRCD is mostly used by rather small IRC networks; had it been used by a very large network the backdoor would most likely have been noticed a whole lot earlier (if they had downloaded UnrealIRCD from a mirror and not from the actual distro repos, which is highly unlikely and stupid anyway in the case you host a public server.)

It's just plain common sense that it took a while to be found.

Reply Parent Score: 3