Re: heanet.dl.sourceforge.net hacked?

Michael Scheidell schrieb:
>
> or have wrong file?
>
> in attempting to upgrade png (due to security problem), we tried to
> pull from sourceforge mirrors.
> (note below, libpng says file size for libpng-1.2.27.tar.bz2 with
> scripts should be 641193) heanet has a bigger file.
> other sourceforge.net mirrors have it right.
>
> Was heanet.dl hacked? are some people downloading a trojanized
> version of png?
> all attempts (in the past) to contact sourceforge had been useless.
>
> http://www.libpng.org/pub/png/libpng.html
>
>
> Attempting to fetch from
> http://heanet.dl.sourceforge.net/sourceforge/libpng/.
> fetch:
> http://heanet.dl.sourceforge.net/sourceforge/libpng/libpng-1.2.27.tar.bz2:
> size mismatch: expected 641193, actual 804821
>

I now get identical files (well, at least from switch.ch and heanet and surfnet.

cheers,
Rainer

• This message: [ Message body ]
• Next message: Moritz Muehlenhoff: "[SECURITY] [DSA 1563-1] New asterisk packages fix denial of service"
• Previous message: mirrors_at_nospam: "Re: heanet.dl.sourceforge.net hacked?"
• In reply to: Michael Scheidell: "heanet.dl.sourceforge.net hacked?"
• Next in thread: Marshall Eubanks: "Re: heanet.dl.sourceforge.net hacked?"
• Reply: Marshall Eubanks: "Re: heanet.dl.sourceforge.net hacked?"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]