Security incident on Fedora infrastructure on 23 Jan 2011
Kevin Fenzi
kevin at scrye.com
Tue Jan 25 22:34:34 UTC 2011
On Tue, 25 Jan 2011 17:10:20 -0500
Ricky Zhou <ricky at fedoraproject.org> wrote:
> > Additionally it would be nice to investigate whether the account was
> > used to access the test machine resources for package maintainers:
> > https://fedoraproject.org/wiki/Test_Machine_Resources_For_Package_Maintainers
> Good point. We don't run those machines, and all packagers have sudo
> there , so Fedora packagers should consider it unsafe to forward their
> SSH agent or enter any sensitive information on those machines. We'll
> get in touch with Kevin about checking those machines though.
I see no evidence of tampering on those machines.
I checked the logs of the firewall in front of them (that logs all ssh
connections to them) against the lastlogs on each. There's no 'missing'
ssh connections or connections from this account.
Thanks for asking. ;)
kevin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
Url : http://lists.fedoraproject.org/pipermail/devel/attachments/20110125/582c5dba/attachment.bin
More information about the devel
mailing list