31
Jan
2012
OpenSSH Backdoor With PAM Support
By IPSECS Admin. Posted in Exploitation | 2 Comments »How many of you using my OpenSSH 5.5p1 bakcdoor published on this url? It’s probably that you experience error about PAM and GSSAPI Authentication. In order to resolve this issue you must be enable PAM and Kerberos5 during compilation as shown below:
./configure –prefix=/usr –sysconfdir=/etc/ssh –enable-pam –enable-kerberos5
After successfully installing the OpenSSH backdoor and restarting sshd service, can you login as root with magic password? The answer is indeed “No”. It’s because the authentication now handled by PAM module so authentication experiences failure. This experience may occur on Linux RHEL, CentOS, Ubuntu, and others family.
Read more »