<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body text="#000000" bgcolor="#ffffcc">
<b class="moz-txt-star"><span class="moz-txt-tag">*</span>MULTIPLE SERVERS<span
class="moz-txt-tag">*</span></b> that are part of the Linux kernel.org infrastructure
<br>
were affected during a recent intrusion where attackers managed to gain
<br>
root access and plant Trojan scripts.
<br>
<br>
According to an email sent out to the community
<br>
<a class="moz-txt-link-rfc2396E" href="http://pastebin.com/i4LFsQPW"><http://pastebin.com/i4LFsQPW></a> by kernel.org chief administrator John
<br>
Hawley, known as warthog9, the incident started with the compromise of a
<br>
server referred to as Hera. The personal colocated machine of Linux
<br>
developer H Peter Anvin (HPA) and additional kernel.org systems were
<br>
also affected.
<br>
<br>
"Upon some investigation there are a couple of kernel.org boxes,
<br>
specifically hera and odin1, with potential pre-cursors on demeter2,
<br>
zeus1 and zeus2, that have been hit by this," Hawley wrote.
<br>
<br>
The intrusion was discovered on 28 August and according to preliminary
<br>
findings attackers gained access by using a set of compromised
<br>
credentials. They then elevated their privileges to root by exploiting a
<br>
zero-day vulnerability that the kernel.org administrators have yet to
<br>
identify.
<br>
<br>
[Full story:]
<br>
<br>
<a class="moz-txt-link-freetext"
href="http://www.theinquirer.net/inquirer/news/2105947/hackers-break-linux-kernel-home?WT.rss_f=&WT.rss_a=Hackers+break+into+Linux+kernel+home">http://www.theinquirer.net/inquirer/news/2105947/hackers-break-linux-kernel-home?WT.rss_f=&WT.rss_a=Hackers+break+into+Linux+kernel+home</a>
<pre class="moz-signature" cols="72">--
"Gun control is like trying to reduce drunk driving by making it
tougher for sober people to own cars." - Unknown
</pre>
</body>
</html>