| 1 |
El 29/06/18 a las 18:33, Peter Humphrey escribió: |
| 2 |
> On Thursday, 28 June 2018 22:15:36 BST Francisco Blas Izquierdo Riera |
| 3 |
> (klondike) wrote: |
| 4 |
>> Hi! |
| 5 |
>> |
| 6 |
>> I just want to notify that an attacker has taken control of the Gentoo |
| 7 |
>> organization in Github and has among other things replaced the portage |
| 8 |
>> and musl-dev trees with malicious versions of the ebuilds intended to |
| 9 |
>> try removing all of your files. |
| 10 |
>> |
| 11 |
>> Whilst the malicious code shouldn't work as is and GitHub has now |
| 12 |
>> removed the organization, please don't use any ebuild from the GitHub |
| 13 |
>> mirror ontained before 28/06/2018, 18:00 GMT until new warning. |
| 14 |
> Does this mean that we're safe to use anything from after your warning? |
| 15 |
> |
| 16 |
It means you are safe to use anything from official Gentoo sources other |
| 17 |
than GitHub. As of now even GitHub should be okay as there was a force |
| 18 |
push to restore the repositories. |
Archives