Conversation
Notices
-
I'm surprised such an exploit exists in PMA xD
Wednesday, 03-Oct-12 19:23:10 UTC from web-
@minti Didn't they have that issue with someone literally managing to get away with committing an obfuscated backdoor to the main source tree?
-
@ceruleanspark I wouldn't know, but if that's true lolol oh man.
-
@minti Oh, they just injected it into the binaries at sourceforge: http://arstechnica.com/security/2012/09/questions-abound-as-malicious-phpmyadmin-backdoor-found-on-sourceforge-site/
-
@ceruleanspark AND OF COURSE THAT'S THE VERSION I AM RUNNING FFFFFF
-
@omni But did you get it from sourceforge?
-
@ceruleanspark No, actually not. I got it from the Arch Linux repositories. Guess I'm safe then, assuming they didn't download it from that exact mirror?
-
@omni Yeah. The exploit was injected into the binaries by hacking that specific mirror, so you'll be fine.
-
@ceruleanspark Mind Jacked
-
@ceruleanspark @minti @widgit Thanks so much for your help, guys. This being the first time I see myself being attacked and all, it was kinda... strange. Then again, also really, really cool. Haven't felt so awesome when using a computer in a while. Like I was literally saying "**** you guys" when I executed the "sudo rc.d stop httpd" command and all the traffic stopped. God, that was awesome. Really improved my day.
-
@omni Welcome to my world. I use to hack games before coming here. XD
-
@omni Being on the other side is kind of fun too. Everything I've picked up about system security, I picked up from the perspective of the attacker.
-
