UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store
 

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
July
Su M Tu W Th F Sa
1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31
Sponsored Links
Latest Postings
Latest Reviews
Topic Options
Rate This Topic
#39369 - 11/25/03 05:38 AM Linux Group's Servers Hacked
Shinobi Offline
UGN Member

Registered: 09/25/02
Posts: 390
Loc: Asheville, NC
Servers belonging to the open source Debian Project, which makes a version of the Linux operating system, were hacked last week, according both to statements posted by project organizers on the group's Web page and to a European CERT (Computer Emergency Response Team) Web site on Friday.

Four servers that host the project's bug tracking system, mailing lists, and various Web pages were compromised on Thursday. However, the intrusions do not affect a software update for the Debian Linux operating system that was released Friday, according to statements from Debian.

The intrusions forced the group to take the precautions of suspending e-mail service for developers through the debian.org domain and locking user accounts on other machines used by project developers, according to information posted on the Web site of project member Wichert Akkerman.

Content from compromised servers was verified using server log files and digital signatures, and was moved to different machines, according to information on Akkermans Site .


Cleaning Up
Debian Project developers were told to assume that their passwords to debian.org were compromised. Access to debian.org machines will be locked until project members have cleaned all affected machines, Akkerman's site said.

Project members were also told to check for intrusions on any machine that they logged on to from a debian.org machine, to update user and administrator passwords on those machines, and to get new SSH (Secure Shell) keys for conducting secure communications between machines, according to a post on Akkerman's Web site.

Despite the intrusions, a new point release for Debian GNU/Linux 3.0--release 3.0r2--was not affected by the compromise and is safe to install. The release contains security updates and bug fixes to the most recent release, according to Debian.

Debian is a free version of the Linux operating system that combines an operating system built on the Linux kernel with software tools from the GNU project, another open source software project. The software is maintained by a worldwide community of volunteer developers, along with donations of money, services, and equipment.

The Source
_________________________
"The secret to creativity is knowing how to hide your sources."
-Albert Einstein

Tech Ninja Security

Top
Sponsored Links
      
#39370 - 11/25/03 05:15 PM Re: Linux Group's Servers Hacked
pergesu Offline
UGN Elite Poster

Registered: 03/14/02
Posts: 1136
Loc: Pimpin the Colorizzle
Already been posted...be sure to look through the posts here before posting news. This has happened a couple times already.

http://www.undergroundnews.com/ubb/ultimatebb.php?ubb=get_topic;f=27;t=000240

Top

Featured Member
Registered: 03/05/02
Posts: 9
Forum Stats
2145 Members
46 Forums
33395 Topics
68562 Posts

Max Online: 1567 @ 04/25/10 10:20 AM
Top Posters
UGN Security 26558
Gremelin 7192
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
Jimmie Menon, fghijk435948, Devo60, ali, lavos
2147 Registered Users
Who's Online
0 registered (), 643 Guests and 336 Spiders online.
Key: Admin, Global Mod, Mod
Latest News


Donate
  Get Firefox!
Get FireFox!