http://theinquirer.org/?article=19251
Just a heads up
Red Hat users urged to patch with Trojan
Fake heads-up
By Nick Farrell: Monday 25 October 2004, 07:09
A FAKE security advisory is being circulated that suggests that Red Hat's Linux distribution users should download and install malicious code.
Several emails are doing the rounds, all claiming to emanate form the Red Hat security team. They provide a patch, which claims to fix a vulnerability "in fileutils (ls and mkdir). Anyone who downloads the patch provides a back door that allows a remote attacker to execute arbitrary code with root privileges.
In the company's security updates page, a spokesHat says that the emails tell users to download and run an update from a user's home directory which has the title www.fedora-redhat.com.
For the record, official messages from the Red Hat security team are never sent unsolicited and are always sent from the address [email protected], and are digitally signed.
The domain at which the fake advisory resides is fedora-redhat.com. The actual site for Fedora, Red Hat's community-based distribution, is fedora.redhat.com. The domain fedora-redhat.com only opened on October 24.
Just a heads up