ktorrent vulnerable?

[Michael Schwendt]

On Sun, 22 Jul 2012 21:02:46 +0530, A. Mani wrote:

> I admit this is speculative and I could not find anything elsewhere.
> Two days ago, I checked somebody's torrent box running updated F17
> with ktorrent and nothing else.
> Firewall settings were OK
>  /usr was writable by user.
> 
> Please check.

Did the user run ktorrent as "root"?
Also, did you keep a copy of the full "stat /usr" output? If not, why not?

-- 
Fedora release 17 (Beefy Miracle) - Linux 3.4.5-2.fc17.x86_64
loadavg: 0.38 1.00 1.13