[kwlug-disc] Linux Mint site hacked

L.D. Paniak ldpaniak at fourpisolutions.com
Wed Feb 24 12:49:09 EST 2016


Given these (large, important, worrying...) issues, maybe it is best if
the Mint team focused their resources on the Cinnamon desktop and other
useful contributions they have made to the community and get out of the
distro business.
Now that Cinnamon is available on Debian and Ubuntu (and others), I am
not sure what the motivation is for maintaining a full-blown distro.


On 02/24/2016 12:29 PM, Khalid Baheyeldin wrote:
> I am not questioning intentions. Good intentions on their own are not
> enough. And I am not commenting on skill or expertise.
>
> Specifically, the big issues that the incidents at hand uncovered are:
>
> - Being silent about a hack that copied user data for a month.
> - Not providing kernel updates
> - Not publishing CVE information
>
> This could all be oversight, but in the end it puts users in danger.
>
> The prudent action by any user is to find an alternative, regardless
> of what the details are.
>
>
> On Wed, Feb 24, 2016 at 12:20 PM, Bob Jonkman <bjonkman at sobac.com
> <mailto:bjonkman at sobac.com>> wrote:
>
>     It's all well and good to say Free Software projects must be
>     managed to professional SysAdmin standards, but how many people
>     have contributed towards that goal? As far as I know, Clem is the
>     only person actively working on that project, and he openly
>     publishes the donations he receives:
>     http://linuxmint.com/donors.php It looks substantial, but when you
>     subtract the costs of running the site there's not much left over
>     for food and shelter.
>
>     --Bob.
>
>     On February 24, 2016 12:06:14 PM EST, Khalid Baheyeldin
>     <kb at 2bits.com <mailto:kb at 2bits.com>> wrote:
>
>         And the forum database was hacked and sold a full month before
>         they announced they were hacked.
>
>         Very disappointing to see a popular free software project
>         being mismanaged that way, with no proper updates.
>
>         http://news.softpedia.com/news/linux-mint-forum-database-compromised-for-at-least-a-month-before-announcement-500901.shtml
>
>         ------------------------------------------------------------------------
>         kwlug-disc mailing list kwlug-disc at kwlug.org
>         <mailto:kwlug-disc at kwlug.org>
>         http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org 
>
>     --Bob Jonkman <bjonkman at sobac.com <mailto:bjonkman at sobac.com>>
>     Phone: +1-519-635-9413 <tel:%2B1-519-635-9413> SOBAC Microcomputer
>     Services http://sobac.com/sobac/ Software --- Office & Business
>     Automation --- Consulting GnuPG Fngrprnt:04F7 742B 8F54 C40A E115
>     26C2 B912 89B0 D2CC E5EA
>     _______________________________________________ kwlug-disc mailing
>     list kwlug-disc at kwlug.org <mailto:kwlug-disc at kwlug.org>
>     http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org 
>
> -- 
> Khalid M. Baheyeldin 2bits.com <http://2bits.com>, Inc. Fast Reliable
> Drupal Drupal optimization, development, customization and consulting.
> Simplicity is prerequisite for reliability. --  Edsger W.Dijkstra
> Simplicity is the ultimate sophistication. --   Leonardo da Vinci For
> every complex problem, there is an answer that is clear, simple, and
> wrong." -- H.L. Mencken
>
> _______________________________________________
> kwlug-disc mailing list
> kwlug-disc at kwlug.org
> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20160224/7f28d9eb/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20160224/7f28d9eb/attachment.sig>


More information about the kwlug-disc mailing list