Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-22144

It seems somebody is tampering with the MongoDB 3.2 Debian repository

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Duplicate
    • Priority: Icon: Critical - P2 Critical - P2
    • None
    • Affects Version/s: 3.2.0
    • Component/s: Packaging
    • Labels:
      None
    • ALL
    • Hide

      apt-key adv --keyserver hkp://keyserver.ubuntu.com --recv EA312927
      echo 'deb http://repo.mongodb.org/apt/debian wheezy/mongodb-org/3.2 main' > /etc/apt/sources.list.d/mongodb-org.list
      apt-get update

      Show
      apt-key adv --keyserver hkp://keyserver.ubuntu.com --recv EA312927 echo 'deb http://repo.mongodb.org/apt/debian wheezy/mongodb-org/3.2 main' > /etc/apt/sources.list.d/mongodb-org.list apt-get update

      The 3.2 binaries in the Debian repository do not match the key specified in the installation guide.
      Might be a malicious attack.

            Assignee:
            Unassigned Unassigned
            Reporter:
            scsynergy Ronald Feicht
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: