[GLLUG] Debian Server hacked
Chris Bell
chrisbell at overview.demon.co.uk
Thu Jul 13 19:14:13 UTC 2006
On Thu 13 Jul, .myke lyons wrote:
>
>
> On 13 Jul 2006, at 10:53, - Tethys wrote:
>
> > On 7/13/06, .myke lyons <Myke.Lyons at cmtww.com> wrote:
> >
> >> http://lists.debian.org/debian-devel-announce/2006/07/msg00003.html
> >>
> >> A Gluck server at Debian was discovered to be hacked yesterday.
> >> They have
> >> taken it offline and are preparing to rebuilding.
> >
> > The thing that really surprises me about this is that they've taken
> > down a number of services (cvs, etc.). I can't comprehend how an
> > organization like Debian can be relying on a single machine for thing
> > like that.
> >
> > Tet
> > --
> > Gllug mailing list - Gllug at gllug.org.uk
> > http://lists.gllug.org.uk/mailman/listinfo/gllug
>
> I'm not so sure they are relying on a single server but rather
> checking their code base and binaries across all services.
>
> I would say that they can no longer trust anything connected or on
> that computer until they have done a full forensics and hash
> conformation.
>
> .myke
Probably nothing to do with it, but my apt-proxy machine started
rejecting the security updates files for the current stable "Sarge" a few
days ago. It just refused to pick up the list.
--
Chris Bell
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list