Language Selection

English French German Italian Portuguese Spanish

Sourceforge Attack: Full Report

Filed under
Security
Web

As we’ve previously announced, SourceForge.net has been the target of a directed attack. We have completed the first round of analysis, and have a much more solid picture of what happened, the extent of the impact, our plan to reduce future risk of attack. We’re still working hard on fixing things, but we wanted to share what we know with the community.

We discovered the attack on Wednesday, and have been working hard to get things back in order since then. While several boxes were compromised we believe we caught things before the attack escalated beyond its first stages.

Our early assessment of which services and hosts were impacted, and the choice to disable CVS, ishell, file uploads, and project web updates appears to have prevented any further escalation of the attack or any data corruption activities.

rest here




More in Tux Machines

I Switched (Back) Over To Fedora As My Main OS & It's Going Great!

Before this long stint with Ubuntu on my main system, I was using Fedora (Core) and before that was openSUSE, Mandrake, and others. I stopped using Fedora (Core) due to some of the releases being less reliable than others with at the time less of a focus on shipping quality releases and at times just feeling like a dirty testing ground for RHEL. With being very pleased with Fedora 20 and Fedora 21 on the many test systems around the office, I decided to give Fedora another go on my main system. I've also been very interested in Fedora.Next and how Fedora 22 is shaping up. Fedora these days seems to be back on a solid footing for end-users with a bright future ahead; Fedora 22 might even ship on time for a change while not sacrificing quality! Fedora 21 brings back a lot of good memories for me of the early Fedora days. Read more

Elementary Extensions for Python-EFL

For those who are unaware the Enlightenment Foundation Libraries and Elementary are the tools that power the Enlightenment desktop and a growing number of other applications. To learn more about getting started with Elementary and python you should check out the full API reference here, the examples on git, or stop by #e.py on Freenode. I have been working on a number of small applications using Elementary. While building these applications I found myself reusing a few of the same gadgets in different places, so I had the idea others might find some of them useful as well. Read more

‘Enterprise customers are now more willing to implement open source’

Jim Whitehurst expects India to play a larger role in NYSE-listed Red Hat’s global strategy, thanks to the rapid pace of infrastructure creation. “When a new system’s put into place, it’s increasingly likely that it may be built on open source. We like places where there is a lot of infrastructure going in,” Whitehurst, President and Chief Executive Officer, Red Hat, said. Red Hat is the world’s largest commercial distributor of the open source-based Linux operating system. Open source denotes software for which the original source code is made freely available and may be redistributed and modified. In an interaction with BusinessLine, Whitehurst throws light on the opportunities in the Indian marketplace for open source. He also explains why the company is keen to increasingly move more support functions to India. Read more

The Navy's Newest Linux-Powered Command Center Is Right Out Of Star Trek

The DDG-1000 Zumwalt Class Destroyer could very well revolutionize the way the Navy does its surface warfare business. One of its biggest innovations is ditching the cramped, darkly lit Combat Information Center (CIC), a fixture for many decades on past USN combat ships, and replacing it with the state-of-the-art, spacious, Star Trek bridge-like Ship's Mission Center. Read more