[ale] [tomek-deb_sec at lodz.tpsa.pl: Re: Debian servers "hacked"?]

Robert L. Harris Robert.L.Harris at rdlg.net
Fri Nov 21 09:04:09 EST 2003



For those not on debian-security or full disclosure.

----- Forwarded message from Tomasz Papszun <tomek-deb_sec at lodz.tpsa.pl> -----

From: Tomasz Papszun <tomek-deb_sec at lodz.tpsa.pl>
To: debian-security at lists.debian.org
Subject: Re: Debian servers "hacked"?
Date: Fri, 21 Nov 2003 13:34:46 +0100
User-Agent: Mutt/1.3.28i
Message-ID: <20031121123445.GE14517 at lodz.tpsa.pl>
X-Spam-Level: 
X-Spam-Status: No, hits=-4.9 required=5.5 tests=BAYES_00 autolearn=ham 
	version=2.60

On Fri, 21 Nov 2003 at 12:38:50 +0100, Thomas Sj?gren wrote:
> Anyone to shed some light over this?
> 
> "Someone has cracked all the servers of the Debian Project. There has
> been a severe security mishap and guys should uninstall all stuff
> downloaded and installed in the past 2 days. Please do not apt-get
> anything right now! Please wait till an `official' release happens!"
> http://article.gmane.org/gmane.linux.debian.user/117910
> 
> Server security mishap - you think?!
> 

This is exaggerated.
I'm forwarding the official announcement from debian-announce mailing
list:

=========================================================================

Date: Fri, 21 Nov 2003 11:46:19 +0100
From: Martin Schulze <joey at infodrom.org>
To: Debian Announcements <debian-announce at lists.debian.org>
Subject: Some Debian Project machines have been compromised
Message-ID: <20031121104619.GK2458 at finlandia.infodrom.north.de>

------------------------------------------------------------------------
The Debian Project                                http://www.debian.org/
Some Debian Project machines compromised                press at debian.org
November 21st, 2003
------------------------------------------------------------------------

Some Debian Project machines have been compromised

This is a very unfortunate incident to report about.  Some Debian
servers were found to have been compromised in the last 24 hours.

The archive is not affected by this compromise!

In particular the following machines have been affected:

  . master (Bug Tracking System)
  . murphy (mailing lists)
  . gluck (web, cvs)
  . klecker (security, non-us, web search, www-master)

Some of these services are currently not available as the machines
undergo close inspection.  Some services have been moved to other
machines (www.debian.org for example).

The security archive will be verified from trusted sources before it
will become available again.

Please note that we have recently prepared a new point release for
Debian GNU/Linux 3.0 (woody), release 3.0r2.  While it has not been
announced yet, it has been pushed to our mirrors already.  The
announcement was scheduled for this morning but had to be postponed.
This update has now been checked and it is not affected by the
compromise.

We apologise for the disruptions of some services over the next few
days.  We are working on restoring the services and verifying the
content of our archives.


Contact Information
-------------------

For further information, please visit the Debian web pages at
<http://www.debian.org/> or contact <press at debian.org>.

-- 
To UNSUBSCRIBE, email to debian-announce-request at lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster at lists.debian.org

=============================================================================


-- 
 Tomasz Papszun   SysAdm @ TP S.A. Lodz, Poland  | And it's only
 tomek at lodz.tpsa.pl   http://www.lodz.tpsa.pl/   | ones and zeros.
 tomek at clamav.net   http://www.ClamAV.net/   A GPL virus scanner


-- 
To UNSUBSCRIBE, email to debian-security-request at lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster at lists.debian.org


----- End forwarded message -----

:wq!
---------------------------------------------------------------------------
Robert L. Harris                     | GPG Key ID: E344DA3B
                                         @ x-hkp://pgp.mit.edu
DISCLAIMER:
      These are MY OPINIONS ALONE.  I speak for no-one else.

Life is not a destination, it's a journey.
  Microsoft produces 15 car pileups on the highway.
    Don't stop traffic to stand and gawk at the tragedy.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature




More information about the Ale mailing list