Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. 🏵️ virtualice 🏵️ (cobaltvelvet@octodon.social)'s status on Friday, 12-Apr-2019 04:00:49 EDT 🏵️ virtualice 🏵️ 🏵️ virtualice 🏵️

    so apparently the attacker:
    - broke into jenkins
    - noticed flywheel (OS X build server) having ssh access from outside through a forwarded port
    - used those two to take flywheel
    - waited for someone to connect to flywheel and forward their agent
    - used the agent to get access to every server and add their key to a authorized_keys2 so it wouldn't get overwritten

    last issue atm: "Monitor log files to avoid relying on external whitehats"

    👏 😍

    In conversation Friday, 12-Apr-2019 04:00:49 EDT from octodon.social permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.