This is a very brief summary from this web site
http://blogs.pcmag.com/securitywatch/2008/07/evilgrade_exploit_toolkit_atta.php
The article says the EvilGrade Exploit tool kit is able to attack
systems using the "man in the middle", attacking through the
installation mechanism. The attacker specifically mentions OO.o in the
kit "ReadMe".
Is it possible to get OO.o installers that are digitally signed? I
think I saw that checksums are available for the installation files. Is
this sufficient to ward off such attacks?
David Teague
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
