Linux distro hacked on GitHub

D

DelJo63

According to NakedSecurity.sophos.com:

Gentoo, a popular distribution of Linux, has had its GitHub repository hacked. Hacked, as in “totally pwned”, taken over, and modified; so far, no one seems to be sure quite how or why.
Now this is exemplary in code management:
  • The Gentoo team didn’t beat around the bush, and quickly published an unequivocal statement about the breach.
  • The Gentoo GitHub repository is only a secondary copy of the main Gentoo source code.
  • The main Gentoo repository is intact.
  • All changes in the main Gentoo repository are digitally signed and can therefore be verified.
  • As far as we know, the main Gentoo signing key is safe, so the digital signatures are reliable.
since Github is only a mirror for it, you are fine as long as you are using rsync or webrsync from gentoo.org.
 
You must log in or register to reply here.

Similar threads

A
BlackLotus UEFI malware source code has leaked on GitHub
Replies
0
Views
360
Alfonso Maruccia
A
Z
Windows Insiders can now use Sudo just like they do on Linux
Replies
3
Views
186
bviktor
B
A
Ayaneo Next Lite is the first Steam Deck competitor built on SteamOS
Replies
6
Views
259
RudyBob
RudyBob

Latest posts

Back