DebianThis forum is for the discussion of Debian Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
yes,...I saw the notice as well. I received one of those "spam" emails,..and was pretty confused by it,..as it reported that it was being sent by the Debian forum itself. That spammer ought to be "horse-whipped" for making the forum have to shut down!!!!
I received an email earlier this afternoon which had a link to forums.debian.net which i followed and got the following rsult whenthe link opemed in windows internet explore:
forums.debian.net is a debian.net service run by a set of DDs for the
community. It's not an official Debian service run or maintained by
the project or DSA (then it would be forums.debian.org).
Nevertheless it was hosted on debian.org hardware since sometime last
year because the original system it was on was an under-the-desk kind of
"server" that was falling apart and the forum admins wanted to continue to
provide this service.
DSA gave them access to tartini.debian.org, which was unused at the
time. Since then, this system has been dedicated to running
forums.debian.net; it was decided to not use tartini for any other
services due to security concerns.
This afternoon DSA received reports that forums.debian.net might have
been compromised: registered users had been email spammed from the
forums software.
forums.debian.net has therefore been disabled.
It is not known when or if or how forums.debian.net will return.
We currently have no reason to believe that tartini itself was
compromised.
For DSA,
Peter
Which makes me wounder if Linuxquestions will come under seige by millions of debian users of all skill levels and their problems.
There weren't exactly millions of people visiting the Debian forums. In addition to that, quite of lot of the Debian forum regulars hang out here too. I think LQ will be just fine.
It seems odd to me that the reaction to a breach in security might be to shut the forums down forever (rather than tighten the security). It was a free server, so obviously their rules are their rules. But it's a shame.
It seems odd to me that the reaction to a breach in security might be to shut the forums down forever (rather than tighten the security). It was a free server, so obviously their rules are their rules. But it's a shame.
I also received a spam email fromthe debian forum administrators, This really makes me skeptical of runing squeeze on two of my three computers , I am security paranoid and doubting wetjer or not i should revert back to etch on both of my debian machines.
It seems odd to me that the reaction to a breach in security might be to shut the forums down forever (rather than tighten the security). It was a free server, so obviously their rules are their rules. But it's a shame.
Nowhere is "forever" mentioned! The mail sounds like it was from a Debian maintainer who did NOT maintain the forums, and only states "It is not known when or if or how forums.debian.net will return" (emphasis mine).
Quote:
Originally Posted by FloridaBSD
I also received a spam email fromthe debian forum administrators, This really makes me skeptical of runing squeeze on two of my three computers , I am security paranoid and doubting wetjer or not i should revert back to etch on both of my debian machines.
Nowhere is squeeze mentioned! In fact, nothing about the host system software is mentioned at all! Only that it was decided to not host anything else but the forums on the system, most likely because web forums are notoriously insecure.
Where are you two getting this? There's only one e-mail in that thread so far!
i don`t think another forum is able to replace it. i`m in a really bad mood.
ain`t there left a bit of hope? (thanks jackiebrown for the threads you made giving the info)
Nowhere is "forever" mentioned! The mail sounds like it was from a Debian maintainer who did NOT maintain the forums, and only states "It is not known when or if or how forums.debian.net will return" (emphasis mine).
You are right, but the tone of that posting seemed to imply "We're not going to touch this thing with a ten-foot pole." Maybe I'm overinterpreting it; I hope so, in fact.
Quote:
Originally Posted by FloridaBSD
I also received a spam email fromthe debian forum administrators, This really makes me skeptical of runing squeeze on two of my three computers , I am security paranoid and doubting wetjer or not i should revert back to etch on both of my debian machines.
That makes no sense whatsoever. The machine in question didn't host a repo at all (and Squeeze is never mentioned in the list posting). There's no reason to believe that Squeeze is compromised. (Also, before Squeeze comes Lenny, not Etch.)
Welcome Jalu: Don't be too down. Many of your old friends will turn up here soon enough.
It'd be a quite a bit of a loss, because there was a lot of good advice on that board. OK, you can find it elsewhere, too, but it's still a big loss. Hope it comes back.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.