The CERT advisory pretty much says it all. http://www.cert.org/advisories/CA-2002-28.html I checked the ebuild file, and you were pulling files from the compromised FTP. I think re emerging sendmail should fix the problem, but im not 100%. You definately should give it a look. -PJ http://www.elitegamer.com
We're safe, the MD5 sum in portage matches the MD5 sum in the CERT advisory. If a user would have tried to download the trojan version the MD5 check would have failed.