|
Jabberstudio.org Compromised for Over a Year - Feel Safe ... Do You Punk? |
 |
 |
 |
|
Sunday, 30 January 2005 09:21 |
|
Yep you read it right, 12 months, 365 days…. Jabberstudio.org the home of the IRC/IM XML replacement was allegedly compromised via a “automated rootkit” over a year ago which “was never used to view or alter Files”. However even though this may be the case the administrators are wanting all project admins to verify their source has not be modified.
Yes this may seem a little odd but all big projects get owned from time to time (like how many didn’t talk about the CVS vulnerability that were no doubt owned by back in the day – maybe because they still don’t know?). Anyway to ensure the safety of the children and animals using the Jabber client, server and/or bots they are doing the correct thing to ensure that all signatures/code bases are verified to ensure they are integral. The only problem we at vdot can see with this is that if no one has a snap shot from a year ago of a respective source tree this is going to be difficult, long and arduous.
Anyway go and look at the car crash here.
Loki tip of the week: take automated CVS snapshots weekly to DVD just in case something like this ever occurs and you’re on the ball like the jabberstudio.org staff and it takes you a year to notice. |
|
Last Updated ( Friday, 22 September 2006 20:05 )
|
