• About Us
  • Search
  • Compatibility
  • Forums
  • Archive
  • Channels
  • Home
To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.
Warp2Search.net » News » July 2009 » Security Notice: Attempted Break-In on www.centos.org

Security Notice: Attempted Break-In on www.centos.org

Posted by: Philipp Esselbach on: 07/04/2009 03:40 AM [ Print | 0 comment(s) ] · 569 views

A security notice from the CentOS project:



Dear Users,

on Friday evening, July 3rd (UTC) we found a few suspicious files on the CentOS webserver. Upon investigating we found out that the files had been put there through Xoops (the CMS www.centos.org runs on) - and that this was possible due to a an administrative error which has been corrected.

As far as we can see there has been no data or binary injected into the system or taken from the system. The machine hasn't been used as a source for sending spam (in the widest possible meaning) either.


We have been able to identify the source of the attacks, but have not been able to find out if the files have been put there through a compromised user account in the Xoops system.

Although we are fairly sure that there has been no such compromise, we have enforced a password expiry on all accounts on the system.

wiki.centos.org and bugs.centos.org - though being on the same machine - have not been affected by this.

All users having an account on www.centos.org need to acquire a new password through the "lost password" system of Xoops.

We are terribly sorry for any inconvenience this might cause you and would like to apologize for that.

On behalf of the CentOS team,

Ralph Angenendt




Digg it! Del.icio.us Technorati Furl Google Bookmarks

Related Stories

07/02/2009 02:02 PM: Microsoft Security Bulletin Major Revisions for July 1, 2009 by Philipp Esselbach
Microsoft published the following Microsoft Security Bulletin Major Revisions The following bulletins have undergone a major revision increment. Please see the appropriate bulletin for more details....

06/24/2009 07:45 AM: Microsoft Security Essentials Beta released by Philipp Esselbach
Microsoft has released Microsoft Security Essentials Beta...

06/22/2009 07:45 AM: Microsoft Security Essentials (Codename Morro) Review by Philipp Esselbach
TechReviewSource.com posted a review on Microsoft Security Essentials ...

06/17/2009 12:20 PM: IObit Security 360 1.1 Beta by Tim Tibbetts
An advanced malware & spyware removal utility that detects, removes and protects your PC....


« RAID Optimization Guide · Security Notice: Attempted Break-In on www.centos.org · Breaking: shot fired, one wounded at Virginia-based Apple Store »

Warp2Search.net » News » July 2009 » Security Notice: Attempted Break-In on www.centos.org

Latest News

· ProduKey 1.40
· Hiren's BootCD 10.1
· FinalBurner Free 2.15.0.171
· Replay Music 3.92
· Google Chrome BETA 4.0.249.4
· Sapphire 5970 Cfx and HIS 5970 CFx Review
· Ultra X4 500 W Power Supply Review
· PC Tools ThreatFire 4.7.0.9
· ZipGenius 6.2.0.2000
· Avira AntiVir Personal - FREE Antivirus 9.0.0.415
· Wise Disk Cleaner 4.83
· Realtek High Definition Audio for Vista\Win 7 2.37
· Realtek High Definition Audio for 2K\XP\03 2.37
· Thermaltake SD100 mini ITX Home Theater Chassis Review
· Foobar 1.0 Beta 1
· Wise Disk Cleaner 4.86
· PHP 5.3.1
· Internet Explorer 9 Preview

Community Forum

· S.T.A.L.K.E.R.: Call of Pripyat Benchmark
Posted by Regeneration

· Thermaltake BlacX Duet Dual Hard Drive Docking Station Review @ Tweaknews
Posted by Tweaknews

· Noctua NH-D14 Premium CPU Cooler Review @ Clunk.org.uk
Posted by Clunk

· HIS Radeon HD4850 iCooler 1GB Videocard Review @ Tweaknews
Posted by Tweaknews

· Building An Ultimate Gaming Machine!
Posted by ezone


Nodes To Friends





Online Users

There are currently 669 user(s) online:
Ask Jeeves, Cuil, Google, Live Search, MSN, Yahoo

© 2007-2009 Esselbach Internet Solutions
All products mentioned are registered trademarks or trademarks of their respective owners.
Read our disclaimer over here and our Privacy Policy over here
Managed with Contentteller(R) Business Edition, (C) 2002 - 2009 Esselbach Internet Solutions