Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×
Security

Submission + - JBoss security incident (jboss.org)

jbatista writes: The JBoss community announced on April 19th that their free Atlassian JIRA instance was targeted by a supposedly previously unknown XSS attack, "which allowed administrative access to the JIRA instance on April 11th, 2010, and subsequently user credentials from a backend database, containing passwords hashed without a random salt." Further details are provided in their announcement. In the meantime, jboss.org account owners (forums, etc.) should be receiving PGP-signed emails providing two links, one for the announcement (the first one leads to an inexistent page, so see the link above) and one for the lost password page in order to change their account password.

Slashdot Top Deals

In less than a century, computers will be making substantial progress on ... the overriding problem of war and peace. -- James Slagle

Working...