Language Selection

English French German Italian Portuguese Spanish

openSUSE Forum Hacked, Everyday Linux, and Mageia RC Delay

Filed under
SUSE

The big news around Linuxville today is the union of Red Hat and CentOS which Sam Dean covered this morning. Close behind was the hacking of openSUSE Forum reported first by The Hacker News. Opensource.com is running a favorite distribution poll and Mageia 4 RC has been delayed.

The Hacker News broke the news yesterday that the openSUSE Forum had been hacked by Pakistani hacker 'H4x0r HuSsY' who managed to upload taunts and possibly steal user data. Mohit Kumar said a zero-day exploit in the vBulletin software used for the openSUSE forums was . As of Kumar's posting, openSUSE weren't even aware of the breach. However, before the day was out a post on opensuse.org appeared informing users of the entry. Passwords were not stored on the compromised server, but user emails were available. The openSUSE Forum has since been taken offline until a solution is found.

More from Susan

More in Tux Machines

Leftovers: Software Development

  • fakecloud
  • A new version of pristine-tar
  • Getting RSS feeds for news websites that don’t provide them
    On the technical side, this seems to be one of the most stable pieces of software I ever wrote. It never crashed or otherwise failed since I started running it, and fortunately I also didn’t have to update the HTML parsing code yet because of website changes. It’s written in Haskell, using the Scotty web framework, Cereal serialization library for storing the history of the past articles, http-conduit for fetching the websites, and html-conduit for parsing the HTML. Overall a very pleasant experience, thanks to the language being very convenient to write and preventing most silly mistakes at compile-time, and the high quality of the libraries.
  • Quick Highlight
    Martin Blanchard put together a new “quick highlight” plugin for Builder this last week. It was a great example of how to submit a new feature, so I just wanted to highlight it here. Post to bugzilla, attach a patch, and we will review quickly and help with any additional integration that might be necessary.

Android Leftovers

Today in Techrights