Page 1 of 1

Debian source site compromised

Posted: Thu Jul 13, 2006 12:43 am
by rapier57
The Internet Storm Center and this site report that a debian development server was compromised.

Might want to be careful of running updates until more information is available.

Posted: Thu Jul 13, 2006 1:03 am
by Egaladeist
Good update rapier! :D

Posted: Thu Jul 13, 2006 1:03 am
by J_K9
Thanks for the heads up - I think f2b uses Debian. I don't have any Debian repos in Ubuntu's sources.list, so I'm alright :)

Cheers!

Posted: Fri Jul 14, 2006 9:22 am
by xierox
Forget running Debian Unstable. Debian Compromised is where it's at. Source


^---- Best Comment EVER! ;)

Posted: Fri Jul 14, 2006 9:40 am
by AcidTone
Bah it only compromised the mailing servers, the little tards couldn't even come up with a 0-day exploit for the actual 0s..

they just used a fearly new exploit modified it, and got lucky..

i still trust ye ol' debian..

Posted: Sun Jul 16, 2006 12:43 pm
by |The|Specialist
AcidTone wrote:they just used a fearly new exploit modified it, and got lucky..
There are actually people who'll kiss my ass yet when some cool domains get hit everyone is out to talk about how lame it was.

Posted: Sun Jul 16, 2006 1:09 pm
by AcidTone
There are actually people who'll kiss my ass..

Do you feel really special about that.?

yet when some cool domains get hit everyone is out to talk about how lame it was.
Actually it was pretty lame, they couldn't find an exploit in the actual 0s that is used on the box.
Instead it was the software that was installed onto the Debian box that they exploited..

very lame indeed, considering they used a openly available skiddy tool that's been floating around for over a year now..

So yes lame, very lame indeed.. :roll:

Posted: Sat Jul 22, 2006 11:03 am
by |The|Specialist
AcidTone wrote:Actually it was pretty lame, they couldn't find an exploit in the actual 0s that is used on the box.
Instead it was the software that was installed onto the Debian box that they exploited..

very lame indeed, considering they used a openly available skiddy tool that's been floating around for over a year now..

So yes lame, very lame indeed.. :roll:
I still don't see what the big deal is.

Posted: Sat Jul 22, 2006 11:32 am
by catch
So yes lame, very lame indeed..
Lame of... the Debian staff?

cheers,

catch