Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Linux

+ - kernel.org compromized-> 2

Submitted by JoeF
JoeF (6782) writes "There is a note posted on the main kernel.org page, that kernel.org has been compromised earlier this month:
"Earlier this month, a number of servers in the kernel.org infrastructure were compromised. We discovered this August 28th. While we currently believe that the source code repositories were unaffected, we are in the process of verifying this and taking steps to enhance security across the kernel.org infrastructure."

The note goes on to say that it is unlikely to have affected the source code repositories, due to the nature of git."

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

kernel.org compromized

Comments Filter:
  • From http://pastebin.com/BKcmMd47 [pastebin.com]:

    ---------- Forwarded message ----------
    From: J.H. <warthog9@kernel.org>
    Date: 2011/8/29
    Subject: [kernel.org users] [KORG] Master back-end break-in
    To: users@kernel.org


    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    Afternoon Everyone,

    As you can guess from the subject line, I've not had what many would
    consider a "good" day. Earlier today discovered a trojan existing on
    HPA's personal colo machine, as well as hera. Upon some investigation
    there are a couple of

  • From http://www.kernel.org/ [kernel.org]:

    Security breach on kernel.org
    Earlier this month, a number of servers in the kernel.org infrastructure were compromised. We discovered this August 28th. While we currently believe that the source code repositories were unaffected, we are in the process of verifying this and taking steps to enhance security across the kernel.org infrastructure.


    What happened?

    • Intruders gained root access on the server Hera. We believe they may have gained this access via a compromised user cre

If it happens once, it's a bug. If it happens twice, it's a feature. If it happens more than twice, it's a design philosophy.

Working...