Kernel.org Returns – Re-establishing Credentials

Share Your Thoughts: Facebooktwittergoogle_pluslinkedin

Data Security

 

Kernel.org Returns

 

Re-establishing Credentials

As we discussed in an earlier post, kernel.org suffered a security breach.

In a message on the Kernel.org site:

“…we have taken the time to re-architect the site in order to improve our systems for developers and users of kernel.org. To this end, we would like all developers who previously had access to kernel.org who wish to continue to use it to host their git and static content, to follow the instructions here.

  • Right now, www.kernel.org and git.kernel.org have been brought back online. All developer git trees have been removed from git.kernel.org and will be added back as the relevant developers regain access to the system.Thanks to all for your patience and understanding during our outage and please bear with us as we bring up the different kernel.org systems over the next few weeks. We will be writing up a report on the incident in the future.”

LKML.org‘s (unofficial Linux Kernel Mailing List archive), H. Peter Anvin outlines the Credential Re-establishing procedure and states:

“In order to establish a proper PGP web of trust we need keys that are cross-signed
by other developers.”

The notice additionally states: “If you work in an office with multiple other Linux developers, it would be a very good thing to organize a local key signing.  We will do a key signing at Kernel Summit (October 23 – 25, 2011 · Clarion Congress Hotel · Prague, Czech Republic) for the core kernel developers.”

For a complete understanding on the original incident, read Jonathan Corbet’s excellent piece on the Linux Foundation Website – The Cracking of kernel.org

 

 

Share Your Thoughts: Facebooktwittergoogle_pluslinkedin

HOW CAN WE HELP YOU?

INFORMATION

Firestorm® Solutions, is a Novume™ Solutions company (Nasdaq: NVMM), and is a leading crisis and risk management firm and America’s CRISIS COACH®. Since 2005, Firestorm has assisted clients in transforming crisis into value by responding to some of the largest and most complex crisis events as well as combining best-practice consulting with proven crisis management expertise. Firestorm empowers clients to manage crisis and risk through assessments, audits, program development, insurance partnerships, training and advisory services using the PREDICT.PLAN.PERFORM.® methodology.

Firestorm assesses, audits, develops, trains and tests strategies and programs encompassing emergency response, business continuity, crisis management, and crisis communications/PR. Firestorm demonstrates thought leadership in workplace violence prevention, cyber-breach response, insurance-related services, communicable illness/pandemic planning, predictive intelligence, and every preparedness initiative.

Firestorm provided crisis management and crisis communications services to Virginia Tech after the shootings and continues to provide services to keep tens of thousands of employees, customers and students safer.

(800) 321-2219

HEADQUARTERS

1000 Holcomb Woods Parkway
Suite 130
Roswell, GA USA 30076