Slashdot readers learned recently that Debian's servers were compromised. More info. And then learned that a kernel exploit was apparently the means of attack. It appears that the Free Software Foundation's servers have been compromised using the same exploit. The servers are back up in part. You may recall, Savannah is a central point for development, distribution and maintenance of GNU Software. With two extremely similar attacks on the two Free-est of Free Software projects, the question has to be asked: Does someone hold a grudge against Free Software? Who stands to gain from these sites having security vulnerabilities based within the Linux kernel? Or is it just a coincidence? The acts of a random cracker? Either way, what can the community do to catch this/these criminal(s)? (This was a rejected Slashdot submission of mine.)
Posted by Brian at December 12, 2003 08:40 AM | TrackBack