---

Home Security

Security breach on kernel.org

By

“Earlier this month, a number of servers in the kernel.org
infrastructure were compromised. We discovered this August 28th.
While we currently believe that the source code repositories were
unaffected, we are in the process of verifying this and taking
steps to enhance security across the kernel.org infrastructure.

What happened?

Intruders gained root access on the server Hera. We believe they
may have gained this access via a compromised user credential; how
they managed to exploit that to root access is currently unknown
and is being investigated.
Files belonging to ssh (openssh, openssh-server and
openssh-clients) were modified and running live.
A trojan startup file was added to the system start up scripts

…We are also currently auditing all security policies to make
kernel.org more secure, but are confident that our systems,
specifically git, have excellent design to prevent real damage from
these types of attacks.

Complete Story

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis

Must Read

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.