Author: KatolaZ Date: To: dng Subject: Re: [DNG] *** DEVUAN.ORG HAS BEEN PWNED *** , message -- UPDATE
On Sun, Mar 31, 2019 at 09:12:39PM +0200, KatolaZ wrote:
> Just an update on the current situation: it looks like the machines on
> which pkgmaster (the main package repository server) and amprolla are
> run are safe. They are on a separate piece of infrastructure and there
> have not been compromised.
> So packages from pkgmaster.devuan.org, packages.devuan,org, and
> deb.devuan.org should be safe anyway (and the repos are signed, so any
> inconsistency would be immediatedly flagged by apt).
> We are working to restore the other machines.
Just to let you know that Devuan's caretakers got anonymous emails
from a group who identified themselves as "Green Hat Hackers". They
insisted on the last line of the pwned website. If you have any clue,
let us know.