Slashdot Mirror

← Back to Stories (view on slashdot.org)

Kernel.org Compromised

Posted by samzenpus on from the everyone-is-doing-it dept.

First time accepted submitter JoeF writes "There is a note posted on the main kernel.org page indicating that kernel.org was compromised earlier this month: 'Earlier this month, a number of servers in the kernel.org infrastructure were compromised. We discovered this August 28th. While we currently believe that the source code repositories were unaffected, we are in the process of verifying this and taking steps to enhance security across the kernel.org infrastructure.' The note goes on to say that it is unlikely to have affected the source code repositories, due to the nature of git."

2 of 312 comments (clear)

  1. Re:Wishful thinking by nabsltd · · Score: 5, Informative

    If the attackers were worth their salt, after gaining access they would drop in their own custom replacements for patch, make and gcc.

    Since patch, make, and gcc are all GNU tools and not part of the Linux kernel, the only harm would be to the single copy on the kernel.org machine. If that machine isn't part of the build process (i.e., if it was merely a file repository), then nothing would be compromised.

    It would also be pretty easy to see because builds from other machines wouldn't match.

  2. Re:How did they hack it? by inode_buddha · · Score: 5, Informative

    H.P.A. has commit privs and his work laptop was trojanned. That's how. Am I the only one who reads and understands the original e-mails from the admin?

    --
    C|N>K