Stories
Slash Boxes
Comments

SoylentNews is people

Full Disclosure: SN Email Account Compromised

posted by NCommander on Monday May 18 2015, @10:00AM   Printer-friendly
from the standing-by-our-principles dept.

Normally, when I make a post on SoylentNews, it's to talk about some exciting new feature, our future, or something similar.

Unfortunately though, on rare occasions, I have to make announcements like this one. Sometime between May 12-13th, one of our email accounts was breached. The account ("test1") was left over from go live, over a year and half ago, and had a very weak password protecting it. We believe that an automated password guesser was able to find and access the account. Once breached, the account was used to send a significant amount of spam until we deleted the affected account on the 14th May 2015.

As a result of the compromise, several spam services have blacklisted our mail server; we're currently working to try and get ourselves cleared whenever we become aware of one of these blocks. We do not believe any user information or sensitive data was compromised; the account in question was simply a virtual dovecot account with no corresponding UNIX account attached to it.

mechanicjay was primarily responsible for handling this and cleaning up the mess, and I wish to personally thank him and the rest of the sysops team for their handling of this issue. We are looking at taking steps to prevent a reoccurence such as using fail2ban and the like. Unfortunately, most IDS systems like fail2ban are incompatible with IPv6 which we use extensively internally within our network.

A sysops meeting is being scheduled to discuss this and other changes we're making to the infrastructure.

I will update this article (or post a new one) with additional information should it become available,
NCommander

 
This discussion has been archived. No new comments can be posted.
Full Disclosure: SN Email Account Compromised | Log In/Create an Account | Top | 91 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Insightful) by Anonymous Coward on Monday May 18 2015, @09:35PM

    by Anonymous Coward on Monday May 18 2015, @09:35PM (#184827)

    The best comments I've ever seen here have come from ACs. All of them. I have never seen truly insightful, deep comments come from a registered user.

    So you've not been doing much SN reading at all, you're only reading stories immediately after they're posted and then never again, or you're lying to push an agenda. There are insightful posts from registered users and plenty of "marry young girls" spam posts from ACs. Merely by using the phrase "all of them", you're provably wrong or such a minor user of SN that your points are likewise invalid.

    Starting Score:    0  points
    Moderation   +3  
       Insightful=3, Total=3
    Extra 'Insightful' Modifier   0  
    Total Score:   3  

  • (Score: 0) by Anonymous Coward on Monday May 18 2015, @11:14PM

    by Anonymous Coward on Monday May 18 2015, @11:14PM (#184869)

    The GP never claimed that ACs didn't post bad comments. The GP also never claimed that registered users don't post good comments. The GP did say that "the best comments ... come from ACs". I hope you're able to comprehend what was said, and what wasn't said, and how they differ.

    • (Score: 0) by Anonymous Coward on Wednesday May 20 2015, @12:19AM

      by Anonymous Coward on Wednesday May 20 2015, @12:19AM (#185250)

      Nope, the poster you refer to wrote:

      The best comments I've ever seen here have come from ACs. All of them. I have never seen truly insightful, deep comments come from a registered user.

      ... which is either provably wrong, or marks that poster as a completely inconsequential user of SN due to spending effecitvely zero time on this site.