Orome1 writes: The FreeBSD team has announced over the weekend that two machines within the FreeBSD.org cluster have been compromised and have been consequently pulled offline for analysis. "These machines were head nodes for the legacy third-party package building infrastructure. It is believed that the compromise may have occurred as early as the 19th September 2012," they announced, and explained that it seems that the intrusion was made possible by a leak of an SSH key from a developer, and was not due to any vulnerability or code exploit within FreeBSD. They pointed out that FreeBSD's base repositories containing the kernel, system libraries, compiler, core command-line tools, and daemons were not compromised, and neither was the freebsd-update(8) binary upgrade mechanism.
Attend or create a Slashdot 20th anniversary party! DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Check out the new SourceForge HTML5 Internet speed test. ×