Security incident on Fedora infrastructure on 23 Jan 2011
Al Reay
alreay1 at gmail.com
Wed Jan 26 02:25:40 UTC 2011
Looks like it's made the news
http://news.slashdot.org/story/11/01/25/1723259/Fedora-Infrastructure-Compromised
Cheers
Al
On Wed, Jan 26, 2011 at 11:34 AM, Kevin Fenzi <kevin at scrye.com> wrote:
> On Tue, 25 Jan 2011 17:10:20 -0500
> Ricky Zhou <ricky at fedoraproject.org> wrote:
>
> > > Additionally it would be nice to investigate whether the account was
> > > used to access the test machine resources for package maintainers:
> > >
> https://fedoraproject.org/wiki/Test_Machine_Resources_For_Package_Maintainers
> > Good point. We don't run those machines, and all packagers have sudo
> > there , so Fedora packagers should consider it unsafe to forward their
> > SSH agent or enter any sensitive information on those machines. We'll
> > get in touch with Kevin about checking those machines though.
>
> I see no evidence of tampering on those machines.
>
> I checked the logs of the firewall in front of them (that logs all ssh
> connections to them) against the lastlogs on each. There's no 'missing'
> ssh connections or connections from this account.
>
> Thanks for asking. ;)
>
> kevin
>
> --
> devel mailing list
> devel at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fedoraproject.org/pipermail/devel/attachments/20110126/d77f97a0/attachment.html
More information about the devel
mailing list