Debian Project servers hacked
It didn't affect a software update for the Debian Linux operating system, released Friday
IDG News Service - Servers belonging to the open-source Debian Project, which makes a version of the Linux operating system, were hacked last week, according to statements posted by project organizers on the group's Web page and to a European Computer Emergency Response Team Web site on Friday.
Four servers that host the project's bug-tracking system, mailing lists and various Web pages were compromised on Thursday. However, the intrusions don't affect a software update for the Debian Linux operating system, which was released Friday, according to statements from Debian.
The intrusions forced the group to suspend e-mail service for developers through the Debian.org domain and lock user accounts on other machines used by project developers as a precaution, according to information posted on the Web site of project member Wichert Akkerman.
Content from compromised servers was verified using server log files and digital signatures and moved to different machines, according to information on Akkerman's site.
Debian Project developers were told to assume that their passwords to Debian.org were compromised. Access to Debian.org machines would be locked until project members have cleaned all affected machines, Akkerman's site said.
Project members were also told to check for intrusions on any machine that they logged onto from a Debian.org machine, update user and administrator passwords on those machines and get new Secure Shell keys for conducting secure communications between machines, according to a post on Akkerman's Web site.
Despite the intrusions, a new point release for Debian GNU/Linux 3.0, Release 3.0r2, wasn't affected by the compromise and is safe to install. The release contains security updates and bug fixes to the most recent release, according to Debian.
Debian is a free version of the Linux operating system that combines an operating system built on the Linux kernel with software tools from the GNU project, another open-source software project. The software is maintained by a worldwide community of volunteer developers and donations of money, services and equipment.
This is just the latest security breach of a well-known open-source software group. In August, the Free Software Foundation, sponsors of the GNU free software project, said a server housing the group's Linux software was broken into by a malicious hacker.
In that attack, intruders compromised an FTP server that housed software making up the core of the Free Software Foundation's GNU/Linux operating system, including the GNU C language library and compiler, as well as other software utilities.
Complete cleanup of the machines following the intrusion will take until Wednesday. After that, the Debian Project will provide more details about the compromise and steps it was taking to prevent future intrusions,according to information on Akkerman's Web site.
- Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk This paper examines the challenges of understanding cyber risks, the importance of having the right cyber risk intelligence, and how to use this...
- 5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- Advanced Threat Defense: A Comprehensive Approach In this interview, Peter George, president, General Dynamics Fidelis Cybersecurity Solutions, explains why we need more than anti-malware, and what constitutes a comprehensive...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to... All Cybercrime and Hacking White Papers | Webcasts