coreboot is under attack? many access problems recently, need to check that sources haven't been tampered
Had a lot of access problems recently, both to coreboot website and its' repositories. Was it a DDoS attack? How to make sure that the sources at review coreboot repository haven't been modified during this event?
Best regards, Ivan
On 31.12.18 18:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to coreboot website and its' repositories. Was it a DDoS attack? How to make sure that the sources at review coreboot repository haven't been modified during this event?
Maybe it's just a lot more of regular traffic because between xmas and new year many nerds have time to tinker with coreboot.
Hi Ivan,
On 31.12.18 12:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to coreboot website and its' repositories.
yes, they were very unresponsive yesterday.
Was it a DDoS attack?
I wouldn't know. Though, there's also still the migration to a new mailing list solution (index generation for the archive), that takes many resources on the server.
How to make sure that the sources at review coreboot repository haven't been modified during this event?
Due to the distributed nature of Git, we always know that the history of the code (and implicitly the state of the code up to a given point) wasn't tampered with. But... there were (authorized) modifications during "this event". So what would remain (if we'd expect tampering) is to distinguish wanted modifications from unwanted ones. Again, Git makes this easy. If you have a trusted commit hash (or local pointer to an earlier revision on master) you can ask Git what changed since then.
Nico
Dear Carl-Daniel, thank you very much for your assuring reply, and for keeping the old "pipermail" mailing list archive because it is much easier to wget and browse with links text browser. Happy coming New Year ! ;-)
Best regards, Ivan
пн, 31 дек. 2018 г. в 19:40, Carl-Daniel Hailfinger c-d.hailfinger.devel.2006@gmx.net:
On 31.12.2018 12:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to coreboot website and its' repositories. Was it a DDoS attack? How to make sure that the sources at review coreboot repository haven't been modified during this event?
No need to worry. There was a scheduled server migration (better hardware) and the mailing list software was updated as well. This took quite a lot of resources. Things should be a lot snappier now.
For details, see the following message:
Date: Tue, 25 Dec 2018 00:40:41 +0100 Message-ID: CAE-gjdXfTif6-_s_Lv5GFiVv+iiKCeM_KeD+18wcYMHNsnG=Sg@mail.gmail.com Subject: [coreboot] mailing list changes
Regards, Carl-Daniel
Dear Ivan,
Patrick Georgi did all the work, he deserves all the thanks.
Best regards, Carl-Daniel
On 31.12.2018 17:48, Ivan Ivanov wrote:
Dear Carl-Daniel, thank you very much for your assuring reply, and for keeping the old "pipermail" mailing list archive because it is much easier to wget and browse with links text browser. Happy coming New Year ! ;-)
Best regards, Ivan
пн, 31 дек. 2018 г. в 19:40, Carl-Daniel Hailfinger c-d.hailfinger.devel.2006@gmx.net:
On 31.12.2018 12:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to coreboot website and its' repositories. Was it a DDoS attack? How to make sure that the sources at review coreboot repository haven't been modified during this event?
No need to worry. There was a scheduled server migration (better hardware) and the mailing list software was updated as well. This took quite a lot of resources. Things should be a lot snappier now.
For details, see the following message:
Date: Tue, 25 Dec 2018 00:40:41 +0100 Message-ID: CAE-gjdXfTif6-_s_Lv5GFiVv+iiKCeM_KeD+18wcYMHNsnG=Sg@mail.gmail.com Subject: [coreboot] mailing list changes
Regards, Carl-Daniel
coreboot mailing list -- coreboot@coreboot.org To unsubscribe send an email to coreboot-leave@coreboot.org
Thank you very much Patrick! For a moment I was afraid that old good "pipermail" disappeared, huge thanks to you for leaving it there. And beautiful new shiny "hyperkitty" UI, really nice looking! Awesome NY present :D Happy New Year dear friend ;)
BR, Ivan
пн, 31 дек. 2018 г. в 19:56, Carl-Daniel Hailfinger c-d.hailfinger.devel.2006@gmx.net:
Dear Ivan,
Patrick Georgi did all the work, he deserves all the thanks.
Best regards, Carl-Daniel
On 31.12.2018 17:48, Ivan Ivanov wrote:
Dear Carl-Daniel, thank you very much for your assuring reply, and for keeping the old "pipermail" mailing list archive because it is much easier to wget and browse with links text browser. Happy coming New Year ! ;-)
Best regards, Ivan
пн, 31 дек. 2018 г. в 19:40, Carl-Daniel Hailfinger c-d.hailfinger.devel.2006@gmx.net:
On 31.12.2018 12:34, Ivan Ivanov wrote:
Had a lot of access problems recently, both to coreboot website and its' repositories. Was it a DDoS attack? How to make sure that the sources at review coreboot repository haven't been modified during this event?
No need to worry. There was a scheduled server migration (better hardware) and the mailing list software was updated as well. This took quite a lot of resources. Things should be a lot snappier now.
For details, see the following message:
Date: Tue, 25 Dec 2018 00:40:41 +0100 Message-ID: CAE-gjdXfTif6-_s_Lv5GFiVv+iiKCeM_KeD+18wcYMHNsnG=Sg@mail.gmail.com Subject: [coreboot] mailing list changes
Regards, Carl-Daniel
coreboot mailing list -- coreboot@coreboot.org To unsubscribe send an email to coreboot-leave@coreboot.org
-
Anac -
Carl-Daniel Hailfinger -
Ivan Ivanov -
Nico Huber