Ubuntu unplugs compromised servers
Print storyFive out of eight systems riddled with bugs
Posted in Servers, 16th August 2007 11:07 GMT
Free Download - Security Web 2.0
Ubuntu had to shut down five of its eight production servers last week after realising the poorly maintained systems were compromised to such an extent they had become a source of attacks against other systems.
The servers were sponsored by Canonical but hosted by the community. The systems were running an old unsupported version of Ubuntu, a factor that goes some way to explaining why they were so insecure.
Problems included missing security patches, the use of FTP (rather than a secure protocol) to access the machines, and no recent upgrades due to problems with the network cards and later kernels. Kernel upgrades were omitted because of poor backwards compatibility with the hardware Canonical supplied.
It's unclear whether or not files hosted on the servers were altered by hackers. A post-mortem by Canonical found that hacking into the systems would have been easy for any moderately skilled hacker.
"An attacker could have gotten a shell through almost any of these sites," writes James Troup, leader of the Canonical sysadmin team.
Ubuntu community members have been given the choice of either migrating the servers to Canonical's data centre or to stay on hosted servers. More on the incident can be found in Ubuntu's newsletter here. ®
Comparing Data Center Batteries, Flywheels, and Ultracapacitors [WP 65]
Fundamental Principles of Air Conditioners for IT [WP 57]
An Improved Architecture for High-Efficiency, High-Density Data Centers [WP126]
Preventive Maintenance Strategy for Data Centers [WP 124]
Power and Cooling Capacity Management for Data Centers [WP150]
Intel denies Core i7 glitch
The Apple Armada - Still worthy of the Jolly Roger?
Apple shares mobile display plugs with outside world
Intel, Lenovo to foil laptop thieves