Debian development server compromise



Sans also brings this story about the Debian development server being compromised. Investigation is ongoing. The machine was gluck.debian.org and hosted CVS among other things (ddtp, lintian, people, popcon, planet, ports, release). It has been taken offline currently for a reinstall, other systems have been locked down until they can patch the vulnerability that they suspect was exploited. More details will be announced.


An update that I’ve seen today is that apparently a developer account with a weak password was compromised. Then the attacker used a LOCAL vulnerability to escalate privileges. The lesson to be learned here is that no matter how secure your network services are, the soft underbelly is the list of users that can log in to the machine (if that’s allowed.) I mean…. if you have a tight ssh config and let bob@yourmachine.com use “bob” for his password…. good luck.

Network facing services deserve HARD passwords. One of the best suggestions I’ve heard for creating hard passwords that can be more easily remembered….. Think of a sentence, use the first letter of each word, substituting numbers in where possible. For instance…. “Look Before you Leap” would become… Lb4YL this is fairly short, but better than “look” It’s also suggested to vary the case (upper/lower).

Related Posts

Blog Traffic Exchange Related Posts
  • Blackberry vulnerability to be released soon Between the Lines is warning that Blackberry Enterprise servers ought to be placed in the DMZ (if not already.) There is word that a critical vulnerability will be announced on August 14th. (And if we already know that's coming then SOMEONE knows what that vulnerability is.) It basically uses software......
  • 5198 Security Vulnerabilities tracked by US-CERT in 2005 The headline probably says most all... 5198 vulnerabilities tracked by US-Cert in 2005. This comes from The SecurityFix. It's probably not every vulernability that was out in 2005, just those that US-CERT issued advisories for. The breakdown is 812 in Windows 2,328 in various Unix/Linux/Mac/BSD systems and 2,058 affecting multiple......
  • Another Debian server security breach According to this story, there has been another compromise of a debian project server. (Is this the third in the last year?)... the Alioth webserver was offline most of the 5th of September... It was simply stopped because we discovered that some script kiddies were running an IRC proxy. After......
Blog Traffic Exchange Related Websites
  • Clarke Takes the British Open in a Surprise Win The only thing which was crazier than the weather at this year’s British Open was the winner. Many people did not even expect that Northern Ireland’s Darren Clarke would be able to win the Claret Jug. Yet, at the end of Sunday, it was his name which was on the......
  • The Benefits of Leveraging Debt to Create Multiple Income Streams Let’s face it, debt has managed to earn itself a pretty bad name in most circles, but in many cases, this stigma is undeserved. Debt, when used properly, can help you secure your financial future. While no one is arguing that improperly used debt is a bad thing, good debt......
  • Oh For Crying Out Loud.. - Internet Marketing Strategies Redefined If the alchemists from the middle ages saw what's going on in the Internet Marketing space today, that is exactly what they'd have to say: "Oh for crying out loud.. What were we thinking when we were hard at work trying to come up with a formula to turn......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site