Shit happens all the time...
@Marius: getting into a sw distribution chain is always sweet for
hackers,
likely they wanted to get access to the repositories.
@Miklos: will it be public, exactly how the pw was stolen? As much i
know
about Krisztian, he is an experienced sysadmin so it'd worth for others
to learn from this case.
On Wed, 14 Sep 2011 00:36:23 -0600, Marius Cirsta wrote:
Not good news but at least there's no problem for us regular people
that have our private keys at home.
What I do wonder though is who might have wanted to hack a
Frugalware
server and why. It does have a pretty good internet connection I
suppose and some CPU power but still .... And with the recent
kernel.org attacks taking place at about the same time, it kind of
makes you wonder.
I think that we do download the kernel straight from kernel.org,
right ? It's just speculation but maybe this is how they knew about
FW
machines.
On Tue, Sep 13, 2011 at 4:56 PM, Miklos Vajna
<[email protected]> wrote:
Hi,
On August 25, genesis was root compromised. I discovered this issue
a
few days after the incident. I wanted to keep back details till I
was
sure I know what happened, thanks to Romain Wartel (CERN Security
Team)
and Leif Nixon (Security officer, Swedish National Infrastructure
for
Computing) for helping in finding out the details.
--
Péter
_______________________________________________
Frugalware-devel mailing list
[email protected]
http://frugalware.org/mailman/listinfo/frugalware-devel
