Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines

To: debian-project@lists.debian.org
Subject: Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines
From: "Gustavo Franco" <gustavorfranco@gmail.com>
Date: Thu, 13 Jul 2006 20:14:16 +0000
Message-id: <[🔎] 5fabd6fd0607131314n35fe365by75152fe0a52f3263@mail.gmail.com>
In-reply-to: <[🔎] 87y7uxuvvq.fsf@kreon.lan.henning.makholm.net>
References: <[🔎] 87psg9z8cf.fsf@pasta.gloaming.local> <[🔎] 200607132136.45618.aragorn@tiscali.nl> <[🔎] 87y7uxuvvq.fsf@kreon.lan.henning.makholm.net>

On 7/13/06, Henning Makholm <henning@makholm.net> wrote:

Scripsit Frans Pop <aragorn@tiscali.nl>

> Should a check/review be done of recent (staring from the date that first
> account was compromised I would guess) uploads where those keys were used
> (even if only by the involved DDs themselves)?

Do we have any easy way of locating all recent uploads signed by a
particular key?


Used to be at[0], but you can still do by name.

[0] = http://qa.debian.org/developer.php

regards,
-- stratus

Reply to:

References:
- Update on compromise of gluck.debian.org, lock down of other debian.org machines
  - From: James Troup <james@nocrew.org>
- Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines
  - From: Frans Pop <aragorn@tiscali.nl>
- Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines
  - From: Henning Makholm <henning@makholm.net>

Prev by Date: Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines
Next by Date: Re: Debian Server restored after Compromise
Previous by thread: Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines
Next by thread: Re: Update on compromise of gluck.debian.org, lock down of other debian.org machines
Index(es):
- Date
- Thread