Gentoo Archives: gentoo-user

From: "Ivan J." <parazyd@××××.org>
To: gentoo-user@l.g.o
Subject: Re: [gentoo-user] Re: Hostile takeover of our github mirror. Don't use ebuild from there until new warning!
Date: Fri, 29 Jun 2018 07:47:59
Message-Id: 20180629074709.bmxlgtgolaldn2ol@fq
In Reply to: Re: [gentoo-user] Re: Hostile takeover of our github mirror. Don't use ebuild from there until new warning! by "Francisco Blas Izquierdo Riera (klondike)"
1 On Fri, Jun 29, 2018 at 03:12:15AM +0200, Francisco Blas Izquierdo Riera (klondike) wrote:
2 > El 29/06/18 a las 00:27, Mick escribió:
3 > > On Thursday, 28 June 2018 22:54:45 BST Francisco Blas Izquierdo Riera
4 > > (klondike) wrote:
5 > >> El 28/06/18 a las 23:15, Francisco Blas Izquierdo Riera (klondike) escribió:
6 > >>> Hi!
7 > >>>
8 > >>> I just want to notify that an attacker has taken control of the Gentoo
9 > >>> organization in Github and has among other things replaced the portage
10 > >>> and musl-dev trees with malicious versions of the ebuilds intended to
11 > >>> try removing all of your files.
12 > >>>
13 > >>> Whilst the malicious code shouldn't work as is and GitHub has now
14 > >>> removed the organization, please don't use any ebuild from the GitHub
15 > >>> mirror ontained before 28/06/2018, 18:00 GMT until new warning.
16 > >>>
17 > >>> Sincerely,
18 > >>> Francisco Blas Izquierdo Riera (klondike)
19 > >>> Gentoo developer.
20 > >> Just to keep up with it. There is a more complete article published at
21 > >> https://www.gentoo.org/news/2018/06/28/Github-gentoo-org-hacked.html
22 > > Thanks for letting us know, but how did this happen?
23 > I don't think there is an official timeline yet. We suspect the github
24 > account of an administrator was compromissed.
25 >
26 > I just brought up the heads up when I noticed that the protage tree had
27 > been modified to contain harmful code.
28
29 Do you have this code somewhere now? Any chance of seeing what happened?
30
31 --
32 ~ parazyd
33 GnuPG: 03337671FDE75BB6A85EC91FB876CB44FA1B0274
34 GnuPG: https://parazyd.org/fa1b0274.asc

Replies