CounterMeasures - A Security Blog » SSH http://countermeasures.trendmicro.eu Trend Micro’s Rik Ferguson blogs about current security issues. Wed, 01 Feb 2012 14:48:59 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Apache SSH Key compromised http://countermeasures.trendmicro.eu/apache-ssh-key-compromised/ http://countermeasures.trendmicro.eu/apache-ssh-key-compromised/#comments Fri, 28 Aug 2009 11:22:28 +0000 Rik Ferguson http://countermeasures.trendmicro.eu/?p=1287 ]]> UPDATE: A post regarding this incident from apache.org is available at https://blogs.apache.org/infra/entry/apache_org_downtime_initial_report

______________________________________________________________________________ 

As of this moment, Apache.org is reporting that SSH key associated with its US servers has been compromised and are shifting all traffic to their European mirror.

28-08-2009 12-10-13

 

Details of the attack/compromise are few at the moment, as this is breaking news. It is worth remembering however that a compromised SSH key led to in-the-wild exploitation of Linux based systems exactly this time last year, for the purposes of installing rootkits. Keep your eye on how this story develops.

 

Apache servers account for around 50% of all web servers in the July 2009 web server survey.

]]> http://countermeasures.trendmicro.eu/apache-ssh-key-compromised/feed/ 6