Your browser does not seem to support CSS. If images appear below, please disregard them.
It appears that you're running an Ad-Blocker. This site is monetized by Advertising and by User Donations; we ask that if you find this site helpful that you whitelist us in your Ad-Blocker, or make a Donation to help aid in operating costs.
Previous Thread
Next Thread
Print Thread
Rate This Thread
#39369 - 11/25/03 05:38 AM Linux Group's Servers Hacked  
Joined: Sep 2002
Posts: 390
Shinobi Offline
UGN Member
Shinobi  Offline
UGN Member

Joined: Sep 2002
Posts: 390
Asheville, NC
Servers belonging to the open source Debian Project, which makes a version of the Linux operating system, were hacked last week, according both to statements posted by project organizers on the group's Web page and to a European CERT (Computer Emergency Response Team) Web site on Friday.

Four servers that host the project's bug tracking system, mailing lists, and various Web pages were compromised on Thursday. However, the intrusions do not affect a software update for the Debian Linux operating system that was released Friday, according to statements from Debian.

The intrusions forced the group to take the precautions of suspending e-mail service for developers through the debian.org domain and locking user accounts on other machines used by project developers, according to information posted on the Web site of project member Wichert Akkerman.

Content from compromised servers was verified using server log files and digital signatures, and was moved to different machines, according to information on Akkermans Site .


Cleaning Up
Debian Project developers were told to assume that their passwords to debian.org were compromised. Access to debian.org machines will be locked until project members have cleaned all affected machines, Akkerman's site said.

Project members were also told to check for intrusions on any machine that they logged on to from a debian.org machine, to update user and administrator passwords on those machines, and to get new SSH (Secure Shell) keys for conducting secure communications between machines, according to a post on Akkerman's Web site.

Despite the intrusions, a new point release for Debian GNU/Linux 3.0--release 3.0r2--was not affected by the compromise and is safe to install. The release contains security updates and bug fixes to the most recent release, according to Debian.

Debian is a free version of the Linux operating system that combines an operating system built on the Linux kernel with software tools from the GNU project, another open source software project. The software is maintained by a worldwide community of volunteer developers, along with donations of money, services, and equipment.

The Source


"The secret to creativity is knowing how to hide your sources."
-Albert Einstein

Tech Ninja Security
Sponsored Links
#39370 - 11/25/03 05:15 PM Re: Linux Group's Servers Hacked  
Joined: Mar 2002
Posts: 1,136
pergesu Offline
UGN Elite Poster
pergesu  Offline
UGN Elite Poster

Joined: Mar 2002
Posts: 1,136
Pimpin the Colorizzle
Already been posted...be sure to look through the posts here before posting news. This has happened a couple times already.

http://www.undergroundnews.com/ubb/ultimatebb.php?ubb=get_topic;f=27;t=000240


Member Spotlight
Gremelin
Gremelin
Portland, OR; USA
Posts: 7,195
Joined: February 2002
Show All Member Profiles 
Forum Statistics
Forums45
Topics46,816
Posts81,986
Average Daily Posts11
Members2,159
Most Online1,567
Apr 25th, 2010
Latest Postings
Top Posters(All Time)
UGN Security 39,980
Gremelin 7,195
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Liked Users (All Time)
§intå× Likes: 1
Cold Sunn Likes: 1
Crime Likes: 1
Cyrez Likes: 1
Ghost Likes: 1
Gremelin Likes: 4
Ice Likes: 1
unreal Likes: 1
Top Liked Users (30 Days)
Powered by UBB.threads™ PHP Forum Software 7.6.0
(Snapshot build 20160902)