Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Fri 19 Dec 2014, 05:32
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Ubuntu Web-facing Software Security Breach
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [6 Posts]  
Author Message
Sky Aisling


Joined: 27 Jun 2009
Posts: 968
Location: Port Townsend, WA. USA

PostPosted: Sun 21 Jul 2013, 21:19    Post subject:  Ubuntu Web-facing Software Security Breach
Subject description: Passwords from Data Base Taken
 

Not sure if this belongs in Puppy security forum.
The reason why I posted here is because of Canonical 's comments about stolen passwords.

http://ubuntuforums.org/announce.html

Quote:
Ubuntu Forums is down for maintenance

There has been a security breach on the Ubuntu Forums. The Canonical IS team is working hard as we speak to restore normal operations. This page will be updated regularly with progress reports.
What we know

Unfortunately the attackers have gotten every user's local username, password, and email address from the Ubuntu Forums database.

The passwords are not stored in plain text, they are stored as salted hashes. However, if you were using the same password as your Ubuntu Forums one on another service (such as email), you are strongly encouraged to change the password on the other service ASAP.
Ubuntu One, Launchpad and other Ubuntu/Canonical services are NOT affected by the breach.



Last edited by Sky Aisling on Sun 21 Jul 2013, 23:22; edited 1 time in total
Back to top
View user's profile Send private message 
James C


Joined: 26 Mar 2009
Posts: 5969
Location: Kentucky

PostPosted: Sun 21 Jul 2013, 21:46    Post subject:  

Earlier thread at
http://www.murga-linux.com/puppy/viewtopic.php?p=714692#714692
Back to top
View user's profile Send private message 
Sky Aisling


Joined: 27 Jun 2009
Posts: 968
Location: Port Townsend, WA. USA

PostPosted: Sun 21 Jul 2013, 21:49    Post subject: Ubuntu Security Breach
Subject description: Delete This Thread?
 

Thank you, James C.
I did a search on this part of the forum, but, didn't pull up anything about this Ubuntu breach.

To whomever is moderating this portion of the forum, please feel free to delete this thread.

Sky
Back to top
View user's profile Send private message 
James C


Joined: 26 Mar 2009
Posts: 5969
Location: Kentucky

PostPosted: Sun 21 Jul 2013, 21:56    Post subject:  

Might as well leave it...... fairly important issue and it'll more likely be noticed with 2 threads.
Back to top
View user's profile Send private message 
Sky Aisling


Joined: 27 Jun 2009
Posts: 968
Location: Port Townsend, WA. USA

PostPosted: Sun 21 Jul 2013, 22:06    Post subject: Ubuntu Security Breach
Subject description: Does this mean ... ?
 

OK,

Quote:
However, if you were using the same password as your Ubuntu Forums one on another service (such as email), you are strongly encouraged to change the password on the other service ASAP.


I have a naive question:
Does this mean, for example, if I use the same password for Ubuntu Forum as I use with an email account or a Puppy Forum account that a hacker could take over my identity in those venues?

I did just now changed my Puppy Forum password to be on the safe side.

Also, on a related subject...I've never felt passwords were all that secure anyway. Years ago, way back in the legacy computer days, we had simple code breakers that we used routinely to break internal company passwords. For example, when an IT employee quit and left in a huff and didn't leave his/her passwords, we just went in and busted the locks. No big deal.

Those were the prehistoric days when legacy computers roamed the earth.
Back to top
View user's profile Send private message 
cowboy


Joined: 03 Feb 2011
Posts: 247
Location: North America; the Western Hemisphere; Yonder

PostPosted: Sun 21 Jul 2013, 23:18    Post subject: ubuntu forums hacked  

Sky Aisling,

I'd encourage you to modify the title of this thread in the interests of accuracy. It was the web-facing software that ran the Ubuntu Forums (vbulletin, I believe) that was hacked. The Ubuntu OS itself was not hacked; some readers might find the thread title a bit concerning. All the best.

_________________
"Everywhere is within walking distance, if you have the time." - Steven Wright
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [6 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.1021s ][ Queries: 11 (0.0091s) ][ GZIP on ]