Meanwhile, I highly recommend using key-based authentication for ssh (and disabling password authentication), as well as a firewall.
The ssh -G test no longer works since -G is a legitimate option since OpenSSH
6.8 See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796599,
https://www.openssh.com/txt/release-6.8, and
https://github.com/eset/malware-ioc/tree/master/windigo. The last link gives
other methods of determining if you are infected.
- [Trisquel-users] I think I caught Widigo g . smyli
- Re: [Trisquel-users] I think I caught Widigo legimet . calc
- Re: [Trisquel-users] I think I caught Widigo legimet . calc
- Re: [Trisquel-users] I think I caught Widigo g . smyli
- Re: [Trisquel-users] I think I caught Widigo g . smyli
- Re: [Trisquel-users] I think I caught Widigo legimet . calc
- [Trisquel-users] Re : I think I caught Widigo lcerf
- Re: [Trisquel-users] I think I caught Widigo g . smyli
- Re: [Trisquel-users] I think I caught Widigo radiowavers
