coreboot is under attack? many access problems recently, need to check that sources haven't been tampered
12:34 p.m.
Had a lot of access problems recently, both to coreboot website and
its' repositories. Was it a DDoS attack? How to make sure that the
sources at review coreboot repository haven't been modified during
this event?
Best regards,
Ivan
1:08 p.m.
On 31.12.18 18:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to
coreboot website and
its' repositories. Was it a DDoS attack? How to make sure that the
sources at review coreboot repository haven't been modified during
this event?
Maybe it's just a lot more of regular traffic because between xmas and
new year many nerds have time to tinker with coreboot.
2:29 p.m.
Hi Ivan,
On 31.12.18 12:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to
coreboot website and
its' repositories.
yes, they were very unresponsive yesterday.
Was it a DDoS attack?
I wouldn't know. Though, there's also still the migration to a new
mailing list solution (index generation for the archive), that takes
many resources on the server.
How to make sure that the
sources at review coreboot repository haven't been modified during
this event?
Due to the distributed nature of Git, we always know that the history
of the code (and implicitly the state of the code up to a given point)
wasn't tampered with. But... there were (authorized) modifications
during "this event". So what would remain (if we'd expect tampering) is
to distinguish wanted modifications from unwanted ones. Again, Git makes
this easy. If you have a trusted commit hash (or local pointer to an
earlier revision on master) you can ask Git what changed since then.
Nico
5:48 p.m.
Dear Carl-Daniel, thank you very much for your assuring reply, and for
keeping the old "pipermail" mailing list archive because it is much
easier to wget and browse with links text browser. Happy coming New
Year ! ;-)
Best regards,
Ivan
пн, 31 дек. 2018 г. в 19:40, Carl-Daniel Hailfinger
<c-d.hailfinger.devel.2006(a)gmx.net>:
>
> On 31.12.2018 12:34, Ivan Ivanov wrote:
> > Had a lot of access problems recently, both to coreboot website and
> > its' repositories. Was it a DDoS attack? How to make sure that the
> > sources at review coreboot repository haven't been modified during
> > this event?
>
> No need to worry. There was a scheduled server migration (better
> hardware) and the mailing list software was updated as well. This took
> quite a lot of resources. Things should be a lot snappier now.
>
> For details, see the following message:
>
> Date: Tue, 25 Dec 2018 00:40:41 +0100
> Message-ID:
<CAE-gjdXfTif6-_s_Lv5GFiVv+iiKCeM_KeD+18wcYMHNsnG=Sg(a)mail.gmail.com>
> Subject: [coreboot] mailing list changes
>
> Regards,
> Carl-Daniel
>
5:56 p.m.
Dear Ivan,
Patrick Georgi did all the work, he deserves all the thanks.
Best regards,
Carl-Daniel
On 31.12.2018 17:48, Ivan Ivanov wrote:
Dear Carl-Daniel, thank you very much for your
assuring reply, and for
keeping the old "pipermail" mailing list archive because it is much
easier to wget and browse with links text browser. Happy coming New
Year ! ;-)
Best regards,
Ivan
пн, 31 дек. 2018 г. в 19:40, Carl-Daniel Hailfinger
<c-d.hailfinger.devel.2006(a)gmx.net>:
On 31.12.2018 12:34, Ivan Ivanov wrote:
_______________________________________________
coreboot mailing list -- coreboot(a)coreboot.org
To unsubscribe send an email to coreboot-leave(a)coreboot.org Had a lot of access problems recently, both to
coreboot website and
its' repositories. Was it a DDoS attack? How to make sure that the
sources at review coreboot repository haven't been modified during
this event?
No need to worry. There was a scheduled server migration (better
hardware) and the mailing list software was updated as well. This took
quite a lot of resources. Things should be a lot snappier now.
For details, see the following message:
Date: Tue, 25 Dec 2018 00:40:41 +0100
Message-ID: <CAE-gjdXfTif6-_s_Lv5GFiVv+iiKCeM_KeD+18wcYMHNsnG=Sg(a)mail.gmail.com>
Subject: [coreboot] mailing list changes
Regards,
Carl-Daniel
9:13 p.m.
Thank you very much Patrick! For a moment I was afraid that old good
"pipermail" disappeared, huge thanks to you for leaving it there. And
beautiful new shiny "hyperkitty" UI, really nice looking! Awesome NY
present :D Happy New Year dear friend ;)
BR,
Ivan
пн, 31 дек. 2018 г. в 19:56, Carl-Daniel Hailfinger
<c-d.hailfinger.devel.2006(a)gmx.net>:
>
> Dear Ivan,
>
> Patrick Georgi did all the work, he deserves all the thanks.
>
> Best regards,
> Carl-Daniel
>
> On 31.12.2018 17:48, Ivan Ivanov wrote:
> > Dear Carl-Daniel, thank you very much for your assuring reply, and for
> > keeping the old "pipermail" mailing list archive because it is much
> > easier to wget and browse with links text browser. Happy coming New
> > Year ! ;-)
> >
> > Best regards,
> > Ivan
> >
> > пн, 31 дек. 2018 г. в 19:40, Carl-Daniel Hailfinger
> > <c-d.hailfinger.devel.2006(a)gmx.net>:
> >> On 31.12.2018 12:34, Ivan Ivanov wrote:
> >>> Had a lot of access problems recently, both to coreboot website and
> >>> its' repositories. Was it a DDoS attack? How to make sure that the
> >>> sources at review coreboot repository haven't been modified during
> >>> this event?
> >> No need to worry. There was a scheduled server migration (better
> >> hardware) and the mailing list software was updated as well. This took
> >> quite a lot of resources. Things should be a lot snappier now.
> >>
> >> For details, see the following message:
> >>
> >> Date: Tue, 25 Dec 2018 00:40:41 +0100
> >> Message-ID:
<CAE-gjdXfTif6-_s_Lv5GFiVv+iiKCeM_KeD+18wcYMHNsnG=Sg(a)mail.gmail.com>
> >> Subject: [coreboot] mailing list changes
> >>
> >> Regards,
> >> Carl-Daniel
> >>
> > _______________________________________________
> > coreboot mailing list -- coreboot(a)coreboot.org
> > To unsubscribe send an email to coreboot-leave(a)coreboot.org
>
322
days inactive
322
days old
5 comments
4 participants
participants (4)
-
Anac -
Carl-Daniel Hailfinger -
Ivan Ivanov -
Nico Huber