Slashdot Mirror

← Back to Stories (view on slashdot.org)

Debian Server Compromised

Posted by ryuzaki0 on from the fox-in-the-henhouse dept.

Security News writes "According to a post on the debian-devel-announce mailing list "Early this morning we discovered that someone had managed to compromise gluck.debian.org. We've taken the machine offline and are preparing to reinstall it. " gluck is a core development machine."

3 of 349 comments (clear)

  1. RSA auth to blame? by twistah · · Score: 0, Offtopic

    They said:
    "...we've locked down
    most other debian.org machines, limiting access to DSA only, until
    they can be fixed for what we suspect is the exploit used to
    compromise gluck."

    Are they saying they think the exploit is in the RSA functionality of SSH? If so, it might be prudent to turn it off for now, but this could be a knee-jerk reaction. (To turn it off, change RSAAuthentication to "no" in /etc/ssh/sshd_config and restart SSHD, though I don't know if it's worth it.)

  2. Re:Question by merreborn · · Score: 0, Offtopic

    The current debian stable version of mysql 4.1 is a year and about 6 releases behind, having received only security patches. That means it's still got all the functionality bugs.

    It can be a real bitch.

  3. well after all... by jackstack · · Score: 0, Offtopic

    it is called 'open source'... bass drum - cymbal drum - *duck*