Re: [ubuntu-uk] Ubuntu servers hacked?
Chris, On Wed, 2007-08-29 at 15:31 +0100, Chris Jones wrote: > Tony Arnold wrote: > > Sad indeed, but I'd like to know how these machines were compromised. In > > In case you'd not seen it linked to elsewhere: > > https://lists.ubuntu.com/archives/loco-contacts/2007-August/001510.html Thanks, no I had not seen this summary. If I was to guess, I'd put my money on phpbb being the culprit, especially if it was an old version. We have had no end of trouble with that package here. Regards, Tony. -- Tony Arnold, IT Security Coordinator, University of Manchester, IT Services Division, Kilburn Building, Oxford Road, Manchester M13 9PL. T: +44 (0)161 275 6093, F: +44 (0)870 136 1004, M: +44 (0)773 330 0039 E: [EMAIL PROTECTED], H: http://www.man.ac.uk/Tony.Arnold -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
Hi Tony Arnold wrote: > Sad indeed, but I'd like to know how these machines were compromised. In In case you'd not seen it linked to elsewhere: https://lists.ubuntu.com/archives/loco-contacts/2007-August/001510.html The machines were not owned or managed by Canonical, just paid for. (I speak here for myself, not my employer) Cheers, -- Chris Jones [EMAIL PROTECTED] www.canonical.com -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
On 16/08/07, alan c <[EMAIL PROTECTED]> wrote: > Press fodder. Set them up high and then knock 'em down. It makes news > on the way up, and also on the way down. > As Ubuntu gets higher profiles as I am sure It will, it is going to > happen much more. A tribute to growing fame. I would be a bit happier > if the marketing list showed a little more awareness of what publicity > can do. Perhaps I expect to much. That's a pretty unwarranted dig at the marketing list, I think. If it is a reference to your recent post about an article which included criticism of Ubuntu, with respect I think your post was taken seriously: yes, a few people (rightly) pointed out that the article was deficient from a technical perspective, and others (myself included) suggested that ideas be put forward about how to respond to the article. You're welcome to contribute to that. -- Matthew East http://www.mdke.org gnupg pub 1024D/0E6B06FF -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
Chris Rowson wrote: >> alan c wrote: >> > Ubuntu Servers Hacked >> > http://it.slashdot.org/article.pl?sid=07/08/15/1341224 >> > >> > >> > If this is true it is pretty sad. It will take some time for >> > confidence to be regained. What a gift (or a result?) for the opposition! >> > > I think that too much is being made of the 'Ubuntu' bit. Press fodder. Set them up high and then knock 'em down. It makes news on the way up, and also on the way down. As Ubuntu gets higher profiles as I am sure It will, it is going to happen much more. A tribute to growing fame. I would be a bit happier if the marketing list showed a little more awareness of what publicity can do. Perhaps I expect to much. -- alan cocks Kubuntu user#10391 -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
> alan c wrote: > > Ubuntu Servers Hacked > > http://it.slashdot.org/article.pl?sid=07/08/15/1341224 > > > > > > If this is true it is pretty sad. It will take some time for > > confidence to be regained. What a gift (or a result?) for the opposition! > I think that too much is being made of the 'Ubuntu' bit. I don't think it's as much a case of Ubuntu servers hacked, more one of poor systems administrators being hacked ;-) Chris -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
Alan, alan c wrote: > Ubuntu Servers Hacked > http://it.slashdot.org/article.pl?sid=07/08/15/1341224 > > > If this is true it is pretty sad. It will take some time for > confidence to be regained. What a gift (or a result?) for the opposition! Sad indeed, but I'd like to know how these machines were compromised. In my experience, Linux/Unix machines are usually compromised because a user name/password has been discovered by a hacker (sorry, cracker!). And quite often, the discovery has been through a compromised Windows box! So if this was a user name compromise, then we can put that down to operational error, or security flaws in some other system. If it was an exploit of a vulnerability in Ubuntu, then that, to me, is a little more worrying. If so it shows the importance of keeping up to date with security patches. Regards, Tony. -- Tony Arnold, IT Security Coordinator, University of Manchester, IT Services Division, Kilburn Building, Oxford Road, Manchester M13 9PL. T: +44 (0)161 275 6093, F: +44 (0)870 136 1004, M: +44 (0)773 330 0039 E: [EMAIL PROTECTED], H: http://www.man.ac.uk/Tony.Arnold -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
Jim Kissel wrote: > > alan c wrote: >> Ubuntu Servers Hacked >> http://it.slashdot.org/article.pl?sid=07/08/15/1341224 >> >> >> If this is true it is pretty sad. It will take some time for >> confidence to be regained. What a gift (or a result?) for the opposition! > > It was a case of self inflected injuries. Using FTP instead of sFTP or > SCP. Not keeping their machines up to date. > > The only redeeming aspect is non of the machines that were compromised > were repositories! > >> >> I was recently trying to reduce my ignorance about security by asking >> questions about security, and on the ubuntu forums I had asked a >> couple of questions about security which were apparently so tiresome >> that they were immediately sidelined into a dead thread! > > What questions? Very similar to the questions I floated past yourself last week. How to come to terms with sudo compromise, or avoid or harden against it. Or in fact how to discover it has happened. Logically the questions would have led to an assessment of risk of 'trusted' software - repositories etc, although it was cut short as 'flogging a dead horse' :-) The comments and answers you kindly offered (thanks!) were excellent in addressing various actions for an increasing level of assurance of security, should one wish it. I am attracted to the idea of at some time, posting on the same forum an edited version of your comments as an answer to my satisfied needs fro knowledge, because it seemed to me that a number of others similar uncertainties. The standard answers of 'use only trusted software' is a good initial answer but even novices know life is not so simple, and knowledge of further courses of action helps, to set a perspective. -- alan cocks Kubuntu user#10391 -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
Re: [ubuntu-uk] Ubuntu servers hacked?
alan c wrote: > Ubuntu Servers Hacked > http://it.slashdot.org/article.pl?sid=07/08/15/1341224 > > > If this is true it is pretty sad. It will take some time for > confidence to be regained. What a gift (or a result?) for the opposition! It was a case of self inflected injuries. Using FTP instead of sFTP or SCP. Not keeping their machines up to date. The only redeeming aspect is non of the machines that were compromised were repositories! > > I was recently trying to reduce my ignorance about security by asking > questions about security, and on the ubuntu forums I had asked a > couple of questions about security which were apparently so tiresome > that they were immediately sidelined into a dead thread! What questions? > > I posted a request for reinstatement in the resolution forum, but have > not heard anything yet. > > In the few days since I was totally ignorant, I have become slightly > better informed, and maybe an appropriate question for the forums > should now be about the story of th eking and his new clothes? > > The off-handedness (of presumably the admin/s) in the ubuntu forums I > stumbled into is ironic indeed in the circumstances. -- Simple effective migration to Open Source based computing Jim Kissel Open Source Migrations Limited w: http://www.osml.eu e: [EMAIL PROTECTED] p: +44(0) 8703 301044 m: +44(0) 7976 411 679 -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/
[ubuntu-uk] Ubuntu servers hacked?
Ubuntu Servers Hacked http://it.slashdot.org/article.pl?sid=07/08/15/1341224 If this is true it is pretty sad. It will take some time for confidence to be regained. What a gift (or a result?) for the opposition! I was recently trying to reduce my ignorance about security by asking questions about security, and on the ubuntu forums I had asked a couple of questions about security which were apparently so tiresome that they were immediately sidelined into a dead thread! I posted a request for reinstatement in the resolution forum, but have not heard anything yet. In the few days since I was totally ignorant, I have become slightly better informed, and maybe an appropriate question for the forums should now be about the story of th eking and his new clothes? The off-handedness (of presumably the admin/s) in the ubuntu forums I stumbled into is ironic indeed in the circumstances. -- alan cocks Kubuntu user#10391 -- ubuntu-uk@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk https://wiki.kubuntu.org/UKTeam/