LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-08-2009, 06:16 PM   #1
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Break-In attempt on www.centos.org


I know a few of you also have an account there and you should have received the message by email. Still to make certain here is the more elaborate email version of what's posted on http://www.centos.org/ (emphasis is mine):

on Friday evening, July 3rd (UTC) we found a few suspicious files on the CentOS webserver. Upon investigating we found out that the files had been put there through Xoops (the CMS www.centos.org runs on) - and that this was possible due to a an administrative error which has been corrected.

As far as we can see there has been no data or binary injected into the system or taken from the system. The machine hasn't been used as a source for sending spam (in the widest possible meaning) either.

We have been able to identify the source of the attacks, but have not been able to find out if the files have been put there through a compromised user account in the Xoops system.

Although we are fairly sure that there has been no such compromise, we have enforced a password expiry on all accounts on the system.

wiki.centos.org and bugs.centos.org - though being on the same machine - have not been affected by this.

The same is true for repositories and packages. The machines handling those are nowhere near to www.centos.org and cannot be reached from there, either.


All users having an account on www.centos.org need to acquire a new password through the "lost password" system of Xoops.

We are terribly sorry for any inconvenience this might cause you and would like to apologize for that.

On behalf of the CentOS team,

Ralph Angenendt

Last edited by unSpawn; 07-08-2009 at 06:20 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to break the memory limitation on 32bit CentOS Distro? depam Linux - Hardware 10 08-13-2009 08:16 AM
problem with iptables afer compiling 2.6.24.2 from www.kernel.org on centos 5.1 tanch Linux - Newbie 4 03-03-2008 12:22 AM
"www::mechanize"-->www.cpan.org using this module login to secure website vvnkishore Linux - General 0 10-04-2007 01:14 AM
Possible Break In Attempt stlyz3 Linux - Security 2 08-05-2005 09:37 AM
CentOS / Asterisk scroll break help arpanet1969 Linux - Newbie 1 07-06-2005 01:49 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:28 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration