On Sat, Jan 17, 2015 at 10:59:19PM +0100, Daniel Cegiełka wrote: > http://www.spiegel.de/media/media-35663.pdf > > "PANT SPARTY is a backdoor in the SSH daemon for *NIX, based on > OpenSSH portable"
They are not talking about the official OpenSSH code. To save everyone a bit of time (and hassle with a PDF), from the same document: "It allows a public key to be embedded in the sshd binary and will then always grant a root login shell if presented with the proper key pair for that key. [...] authorized_keys as a quick-and-easy method of persistence [...] obviously isn't very stealthy [...] The goal for this project was to provide the same level of persistence but embedded in the sshd binary itself (obviously, assuming root access, as before)" In other works, no backdoor in sshd unless the system has already been rooted by other means and sshd replaced with a bugged binary. Boohoo.
