On 2017-02-10 23:19, nicholas wrote:
And Roy Schestowitz is kind of a known troll who hates SUSE.
Ciao, Marcus
Is the report accurate? If so, does it matter if he hates SUSE? 1 - that opensuse news was hacked - yes its all over the internet since at least (CIO 07-02-2017) 2 - that it was hush hush - no [see 1] + techrights article dated 09-02-2017 + see richard brown interview
+++------------------------ http://techrights.org/2017/02/08/links-822017-linuxquestions-members-choice-... * Kurdish Hacker Posts Anti-ISIS Message on openSUSE’s Website, Data Remains Safe -> http://news.softpedia.com/news/kurdish-hacker-posts-anti-isis-message-on-ope... Softpedia was informed by Dr. Roy Schestowitz that the openSUSE News (news.opensuse.org) website got defaced by Kurdish hacker MuhmadEmad on the day of February 6, 2017. It would appear that the server where the news.opensuse.org website is hosted is isolated from the rest of openSUSE’s infrastructure, which means that the hacker did not have access to any contributor data, such as email and passwords, nor to the ISO images of the openSUSE Linux operating system. We already talked with openSUSE Chairman Richard Brown, who confirms for Softpedia that the offered openSUSE downloads remain safe and consistent, and users should not worry about anything. The vigilant openSUSE devs immediately restored the news.opensuse.org website from a recent backup, so everything is operating normally at this time. * OpenSUSE site hacked; quickly restored -> http://www.cio.com/article/3166446/security/opensuse-site-hacked-quickly-res... The openSUSE team acted quickly to restore the site. When I talked to Richard Brown, openSUSE chairman, he said that “the server that hosts ‘news.opensuse.org’ is isolated from the majority of openSUSE infrastructure by design, so there was no breach of any other part of openSUSEs infrastructure, especially our build, test and download systems. Our offered downloads remain safe and consistent and there was no breach of any openSUSE contributor data.” The team is still investigating the reason for the breach so I don’t have much information. The site ran a WordPress install and it seems that WordPress was compromised. This site is not managed by the SUSE or openSUSE team. It is handled by the IT team of MicroFocus. However, Brown said that SUSE management certainly doesn’t want any such incident to happen again and they are considering moving the site to the infrastructure managed by SUSE and openSUSE team. ------------------------++- But I could not locate the interview to R. B. :-? -- Cheers / Saludos, Carlos E. R. (from 42.2 x86_64 "Malachite" (Minas Tirith))