An Interest In:
Web News this Week
- April 18, 2024
- April 17, 2024
- April 16, 2024
- April 15, 2024
- April 14, 2024
- April 13, 2024
- April 12, 2024
June 4, 2015 08:00 am
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/1RAS56jNbgE/users-with-weak-ssh-keys-had-access-to-github-repositories-for-popular-projects
Users With Weak SSH Keys Had Access To GitHub Repositories For Popular Projects
itwbennett writes: Earlier this year, researcher Ben Cox collected the public SSH (Secure Shell) keys of users with access to GitHub-hosted repositories by using one of the platform's features. After an analysis, he found that the corresponding private keys could be easily recovered for many of them. The potentially vulnerable repositories include those of music streaming service Spotify, the Russian Internet company Yandex, the U.K. government and the Django Web application framework. GitHub revoked the keys, but it's not clear if they were ever abused by attackers.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/1RAS56jNbgE/users-with-weak-ssh-keys-had-access-to-github-repositories-for-popular-projects
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot