Hi!
I'm experiencing some weird problems with my gentoo install. I can't log
in as root; it seems like the password has been changed/screwed up. Has
anyone else had similar experiences? I may have had a break-in but I don't
run any public services, and the local services I use
(X (+xdm),vixie-cron (+anacron),syslog-ng,ntpdate,dhcpcd) don't listen for
ip (tcp/udp). Furthermore I don't run a local firewall on my machine since
I haven't learned iptables rules yet (it's on my todo-list), but my
adsl-modem has a built-in firewall which, according to the shieldsup site,
does a pretty good job at hiding my 'puter. This leads me to think that an
'emerge' has gone wrong. According to my emerge.log I installed libcaps on
4th feb. but /sbin/{getpcaps,setpcaps,sucap,execcap} are installed on 10th
feb. Strange indeed! This is the second time I've had strange problems
with gentoo; the first time my /root/.bash_history was of size 0 (zero)
which led to a re-format and re-install. What to do?
How is the emerge/portage system audited/secured? Can someone put up a
ebuild with trojans in them?
FYI: I'm typing this from a knoppix cdrom boot...
Best regards
Peter K
--
gentoo-security@gentoo.org mailing list
I'm experiencing some weird problems with my gentoo install. I can't log
in as root; it seems like the password has been changed/screwed up. Has
anyone else had similar experiences? I may have had a break-in but I don't
run any public services, and the local services I use
(X (+xdm),vixie-cron (+anacron),syslog-ng,ntpdate,dhcpcd) don't listen for
ip (tcp/udp). Furthermore I don't run a local firewall on my machine since
I haven't learned iptables rules yet (it's on my todo-list), but my
adsl-modem has a built-in firewall which, according to the shieldsup site,
does a pretty good job at hiding my 'puter. This leads me to think that an
'emerge' has gone wrong. According to my emerge.log I installed libcaps on
4th feb. but /sbin/{getpcaps,setpcaps,sucap,execcap} are installed on 10th
feb. Strange indeed! This is the second time I've had strange problems
with gentoo; the first time my /root/.bash_history was of size 0 (zero)
which led to a re-format and re-install. What to do?
How is the emerge/portage system audited/secured? Can someone put up a
ebuild with trojans in them?
FYI: I'm typing this from a knoppix cdrom boot...
Best regards
Peter K
--
gentoo-security@gentoo.org mailing list