Another Debian server security breach



According to this story, there has been another compromise of a debian project server. (Is this the third in the last year?)… the Alioth webserver was offline most of the 5th of September…

It was simply stopped because we discovered that some script kiddies were running an IRC proxy. After thorough investigation, we discovered that they exploited a pmwiki security hole[1] to deface some web pages, to install some malicious php pages which in turn were used to setup the IRC proxy.


They DO state that there are too many projects with custom installed web software, which can put them at greater risk. It’s good that they found it and cleaned it up and are giving the public announcement. It should serve as an example for everyone to keep their web applications updated.

Related Posts

Blog Traffic Exchange Related Posts
  • Debian development server compromise Sans also brings this story about the Debian development server being compromised. Investigation is ongoing. The machine was gluck.debian.org and hosted CVS among other things (ddtp, lintian, people, popcon, planet, ports, release). It has been taken offline currently for a reinstall, other systems have been locked down until they can......
  • Google announces analytics for web sites Google has rolled out another free tool for site owners. Google Analytics was announced today. Using technology acquired from Urchin, this free service (limited to 5 million page views a month), sits on your webpage as a little javascript "bug" of sorts and tracks information on visitors to your site.......
  • Scansafe tries to make web browsing safer... Scansafe is launching a new free product called scandoo which aims to tag search results with Green yellow and blow widgets so you know which sites are safe (green), dangerous (red) or uncertain (Yellow). ZDnet had news of the scandoo service which is not the first attempt at making the......
Blog Traffic Exchange Related Websites
  • No Far More Boring Weblog Templates For Your WordPress Blog I am positive that if you are visiting this page, you will be interested in genesis theme framework. Probably the hardest aspect of WordPress to grasp for new customers is that there's no set "look" to the site it produces - the content and design and style are fully separated,......
  • Making Money With Articles On Niche Sites Choosing a good niche topic to base your web site around is 1 of the most crucial aspects of making cash off of your content articles. This can give you a foundation to construct from and you are able to target one general audience with a pack of key phrases......
  • Misspelled Search Engine Keywords In the past, people that were trying to rank their website in search engines would make use of misspelled search engine keywords because they wanted searchers to find them even if they were incorrectly entering certain keywords. Today, most search engines now automatically offer suggestions that are designed to correct......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site