Language Selection

English French German Italian Portuguese Spanish

Sourceforge Attack: Full Report

Filed under

As we’ve previously announced, has been the target of a directed attack. We have completed the first round of analysis, and have a much more solid picture of what happened, the extent of the impact, our plan to reduce future risk of attack. We’re still working hard on fixing things, but we wanted to share what we know with the community.

We discovered the attack on Wednesday, and have been working hard to get things back in order since then. While several boxes were compromised we believe we caught things before the attack escalated beyond its first stages.

Our early assessment of which services and hosts were impacted, and the choice to disable CVS, ishell, file uploads, and project web updates appears to have prevented any further escalation of the attack or any data corruption activities.

rest here

More in Tux Machines

Linksys WRT router gains faster SoC, more RAM, OpenWrt

Linksys has launched a “WRT1900ACS” router that updates the AC version with a faster dual-core, 1.6GHz SoC, twice the RAM (at 512MB), and OpenWrt support. In early 2014 when Linksys resurrected the hackable Linksys WRT54G WiFi router in a new WRT1900AC model, the Belkin subsidiary said the the Linux-based router would also support the lightweight, networking-focused OpenWrt Linux distribution. With the new WRT1900ACS, Linksys is making life easier for OpenWrt lovers by providing full, open source OpenWrt support out of the box. Read more

New Renesas SoCs offer 1.5GHz, 1080p, GbE, USB 3.0, PCIe

The RZ/G updates the Renesas Electronics RZ line of system-on-chips, which includes the Linux-ready RZ/A1 line of single-core, 400MHz Cortex-A9 SoCs, as well as an RZ/T line that runs an RTOS on a Cortex-M4 microcontroller. The new devices are aimed at a wide range of Linux- and Android embedded products including hand-held medical devices, digital signage, and industrial, home appliance, and office equipment devices that use a human-machine interface (HMI), says the Japanese semiconductor firm. Read more

Fedora OpenID issues resolved

It is very likely that you have seen the issues we had with logging in to Fedora Infrastructure services, or other websites that use Fedora OpenID to authenticate you. Read more

Mozilla Continues Moving Away From NPAPI Plugins

Firefox continues making progress on loosening web developers' and users' dependence on NPAPI plug-ins with a goal still in place to remove support for most NPAPI plugins by the end of 2016. Read more