Linked by Jordan Spencer Cunningham on Mon 14th Jun 2010 23:58 UTC
Bugs & Viruses Recently, the Linux version of UnrealIRCd was discovered to have had a Trojan worm its way into the source code. Even more embarrassing for the developers of Unreal is that the Trojan's been holding open the backdoor in the source code since November of 2009-- not very recently. And, of course, bloggers and press in general are taking the opportunity of another breach in Linux security to point out doomsday devices that don't really exist.
Permalink for comment 430318
To read all comments associated with this story, please click here.
Member since:

Secunia Advisory SA40147
Gentoo update for unrealircd

Bugzilla Bug 323691
=net-irc/unrealircd- remote command execution via backdoor (CVE requested)

Important Security Update for UnrealIRCd in Gentoo

Gentoo alert 201006-21 (unrealircd)

Encase those are too subtle:

"the malware-compromised code was included in the official Gentoo distribution", since Nov. 2009.

These are not random news sites sensationalizing the information. Maybe I'm imagining all those links?

Stop being so emotionally involved in your chosen soapbox. Your doing the exact thing the media spin outlets are doing; over-reacting and focusing on a single misrepresented point rather than what is actually of value. Let's move on to productive discussion like what processes allowed it to enter the distribution, how it can be caught in the future, *how fast it was patched*, how/if any other distributions where affected. Sticking your head in the sand and saying "it's perfect, it's perfect, it's perfect" over and over doesn't make it so.

(The irony here is your so spun up in rationalizing your single point that your attacking people like me who are primarily and enthusiastically Linux based platform users and administrators.)

Reply Parent Score: 2