lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Fri Jul 22 13:57:13 2005
From: crg at digitalsec.net (Crg)
Subject: apache.org files are infected?

I cant reproduce it...


(root@...heaven):~# wget http://www.apache.org/dist/apr/apr-1.0.1.tar.gz
--12:31:28--  http://www.apache.org/dist/apr/apr-1.0.1.tar.gz
           => `apr-1.0.1.tar.gz'
Resolving www.apache.org... 192.87.106.226
Connecting to www.apache.org[192.87.106.226]:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 1,058,637 [application/x-gzip]

100%[=======================================================================
===========>] 1,058,637     --.--K/s

12:31:28 (11.08 MB/s) - `apr-1.0.1.tar.gz' saved [1,058,637/1,058,637]

(root@...heaven):~# md5sum apr-1.0.1.tar.gz
0a3cb911ea1823cfa3e5863892774705  apr-1.0.1.tar.gz

(root@...heaven):~# lynx --source
http://www.apache.org/dist/apr/apr-1.0.1.tar.gz.md5
apr-1.0.1.tar.gz: 0A 3C B9 11 EA 18 23 CF  A3 E5 86 38 92 77 47 05



Crg @ !dSR
www.digitalsec.net



----- Original Message ----- 
From: "Seven King" <sevenkingonline@...oo.com>
To: <full-disclosure@...ts.grok.org.uk>
Sent: Friday, July 22, 2005 12:18 PM
Subject: [Full-disclosure] apache.org files are infected?


> md5sum against a tar.gz file from:
> http://www.apache.org/dist/apr/apr-1.0.1.tar.gz
> turns out to be:
> 500307fff221dc100e04d8e9843068a4
> instead of
> http://www.apache.org/dist/apr/apr-1.0.1.tar.gz.md5
>
>
>
>
> ____________________________________________________
> Start your day with Yahoo! - make it your home page
> http://www.yahoo.com/r/hs
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ