[Linuxtrent] Anche un server gentoo compromesso

• From: Stefano Morandi <s.morandi@xxxxxxx>
• To: linuxtrent@xxxxxxxxxxxxx
• Date: Wed, 3 Dec 2003 23:21:47 +0100

----
Gentoo rsync.gentoo.org server compromised. 
On 2 December at approximately 03:45 UTC, one of the servers that makes up 
the rsync.gentoo.org rotation was compromised via a remote exploit. 
However, the compromised system had both an IDS and a file integrity 
checker installed and we have a very detailed forensic trail of what 
happened once the box was breached, so we are reasonably confident that 
the portage tree stored on the box was unaffected. This box has been 
removed from all rsync.*.gentoo.org rotations and will remain so until 
forensic analysis has been completed and it has been wiped and rebuilt. 
For more details, see the  GLSA.
----

Maggiori (anche se non e' ancora chiaro come sia accaduto) info qui:
http://www.gentoo.org/security/en/glsa/glsa-200312-01.xml


Ciao
-- 
Stefano Morandi  -  Linux user #147418   |  GPG key block:
s (dot) morandi (at) iast (dot) it       |  http://www.iast.it/pgp
                   Close the world...       Open the Next

-- 
Per iscriversi  (o disiscriversi), basta spedire un  messaggio con OGGETTO
"subscribe" (o "unsubscribe") a mailto:linuxtrent-request@xxxxxxxxxxxxx

Other related posts:

• » [Linuxtrent] Anche un server gentoo compromesso

1. Home
2. linuxtrent
3. Archive
4. 12-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---