Kernel.org Linux Repository Compromised
Posted on: 09/01/2011 08:55 AM

Threatpost posted a story that attackers have compromised a number of servers at kernel.org that house the Linux kernel source code and were able to modify a number of files and log user activity on the machines.

Kernel.org Linux Repository Compromised


A message on the kernel.org site, which is maintained by the Linux Kernel Organization, said that the attack happened some time in August and that site officials discovered it on Sunday. The attackers were able to get access to the SSH files on one of the servers and modify them.

"Intruders gained root access on the server Hera. We believe they may have gained this access via a compromised user credential; how they managed to exploit that to root access is currently unknown and is being investigated," the message says.



Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/kernel_org_linux_repository_compromised.html)