Language Selection

English French German Italian Portuguese Spanish

WineHQ database compromise

Filed under
Software
Security
Web

I am sad to say that there was a compromise of the WineHQ database system.

What we know at this point that someone was able to obtain unauthorized access to the phpmyadmin utility. We do not exactly how they obtained access; it was either by compromising an admins credentials, or by exploiting an unpatched vulnerability in phpmyadmin.

We had reluctantly provided access to phpmyadmin to the appdb developers (it is a very handy tool, and something they very much wanted). But it is a prime target for hackers, and apparently our best efforts at obscuring it and patching it were not sufficient.

So we have removed all access to phpmyadmin from the outside world.

We do not believe the attackers obtained any other form of access to the system.

Rest here




More in Tux Machines

Debian-Based Distribution Updated With KDE 3.5 Forked Desktop

Q4OS 1.2 "Orion" is the new release that is re-based on Debian Jessie, focused on shipping its own desktop utilities and customizations, and designed to run on both old and new hardware. Read more

Atom Shell is now Electron

Atom Shell is now called Electron. You can learn more about Electron and what people are building with it at its new home electron.atom.io. Read more Also: C++ Daddy Bjarne Stroustrup outlines directions for v17

A Fedora 22 beta walk-through

The new Fedora, with its GNOME 3.16 interface, is an interesting, powerful Linux desktop. Read more Also: Web software center for Fedora Red Hat's Cross-Selling and Product Development Will Power Long-Term Growth Red Hat Updates Open Source Developer and Admin Tools

Unix and Personal Computers: Reinterpreting the Origins of Linux

So, to sum up: What Linus Torvalds, along with plenty of other hackers in the 1980s and early 1990s, wanted was a Unix-like operating system that was free to use on the affordable personal computers they owned. Access to source code was not the issue, because that was already available—through platforms such as Minix or, if they really had cash to shell out, by obtaining a source license for AT&T Unix. Therefore, the notion that early Linux programmers were motivated primarily by the ideology that software source code should be open because that is a better way to write it, or because it is simply the right thing to do, is false. Read more Also: Anti-Systemd People