Re: apache.org files are infected?

["Crg" <crg () digitalsec net>]

I cant reproduce it...


(root@fogheaven):~# wget http://www.apache.org/dist/apr/apr-1.0.1.tar.gz
--12:31:28--  http://www.apache.org/dist/apr/apr-1.0.1.tar.gz
           => `apr-1.0.1.tar.gz'
Resolving www.apache.org... 192.87.106.226
Connecting to www.apache.org[192.87.106.226]:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 1,058,637 [application/x-gzip]

100%[=======================================================================
===========>] 1,058,637     --.--K/s

12:31:28 (11.08 MB/s) - `apr-1.0.1.tar.gz' saved [1,058,637/1,058,637]

(root@fogheaven):~# md5sum apr-1.0.1.tar.gz
0a3cb911ea1823cfa3e5863892774705  apr-1.0.1.tar.gz

(root@fogheaven):~# lynx --source
http://www.apache.org/dist/apr/apr-1.0.1.tar.gz.md5
apr-1.0.1.tar.gz: 0A 3C B9 11 EA 18 23 CF  A3 E5 86 38 92 77 47 05



Crg @ !dSR
www.digitalsec.net



----- Original Message ----- 
From: "Seven King" <sevenkingonline () yahoo com>
To: <full-disclosure () lists grok org uk>
Sent: Friday, July 22, 2005 12:18 PM
Subject: [Full-disclosure] apache.org files are infected?


> md5sum against a tar.gz file from:
> http://www.apache.org/dist/apr/apr-1.0.1.tar.gz
> turns out to be:
> 500307fff221dc100e04d8e9843068a4
> instead of
> http://www.apache.org/dist/apr/apr-1.0.1.tar.gz.md5
>
>
>
>
> ____________________________________________________
> Start your day with Yahoo! - make it your home page
> http://www.yahoo.com/r/hs
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/