Menu
Home
People
Places
Arts
History
Plants & Animals
Science
Life & Culture
Technology
Reference.org
kernel.org
open-in-new
<h2 id="2011-security-breach">2011 security breach</h2> <p>On 28 August 2011, developers at kernel.org realized that there had been a major security breach. Intruders had gained root access to the system and added a trojan to the startup scripts. Developers reinstalled all the servers and investigated the origin of the attack.<a class="footnote-ref" id="fnref:5" href="#fn:5"><sup>5</sup></a> It is likely, although not confirmed, that the kernel.org intrusion is related to the intrusions of <a href="/facts/Linux_Foundation/5wbe2Vp0">LinuxFoundation.org</a> and <a href="/facts/Linux.com/RP2IuYql">Linux.com</a> websites that were determined shortly afterwards.<a class="footnote-ref" id="fnref:6" href="#fn:6"><sup>6</sup></a><a class="footnote-ref" id="fnref:7" href="#fn:7"><sup>7</sup></a> </p><p><a href="/facts/Git/U5Ty9QmQ">Git</a>, a distributed and open-source source management system designed by <a href="/facts/Linus_Torvalds/EdDKP534">Linus Torvalds</a> to guarantee the integrity of the source code, is used to keep track of changes in the Linux source code. This and the fact that the source code is available to anyone and widely known makes any attempt to tamper with the source code fairly easy to detect and revert if required.<a class="footnote-ref" id="fnref:8" href="#fn:8"><sup>8</sup></a> All that makes kernel.org not the primary <a href="/facts/Repository_(revision_control)/PjE4Vkes">repository</a>, but rather a distribution point of the kernel sources. </p><p>Kernel.org was back online by November 2011, with the exception of a few secondary services.<a class="footnote-ref" id="fnref:9" href="#fn:9"><sup>9</sup></a> A 27 year old resident of Florida, US was arrested in 2016 for the attack.<a class="footnote-ref" id="fnref:10" href="#fn:10"><sup>10</sup></a> </p> <h2 id="see-also">See also</h2> <ul><li><a href="/facts/Linux_kernel_mailing_list/nNgpLcfI">Linux kernel mailing list</a> (LKML)</li></ul> <h2 id="external-links">External links</h2> <ul><li><a href="https://www.kernel.org/">Official website</a></li></ul> <h2 id="references">References</h2> <ol> <li id="fn:1"><p>"The Linux Kernel Organization". Kernel.org. Linux Kernel Organization. 2013-12-05. Retrieved 2015-01-15. <a href="https://www.kernel.org/category/about.html" target="_blank">https://www.kernel.org/category/about.html</a> <a href="#fnref:1" class="footnote-back-ref">↩</a></p></li> <li id="fn:2"><p>"The Linux Kernel Archives - FAQ". Kernel.org. Linux Kernel Organization. 2014-09-02. Retrieved 2015-01-16. <a href="https://www.kernel.org/category/faq.html" target="_blank">https://www.kernel.org/category/faq.html</a> <a href="#fnref:2" class="footnote-back-ref">↩</a></p></li> <li id="fn:3"><p>"Mirrors.kernel.org, a service of the Linux Kernel Archives". Kernel.org. Linux Kernel Organization. 2014-12-13. Retrieved 2015-01-16. <a href="https://mirrors.kernel.org/" target="_blank">https://mirrors.kernel.org/</a> <a href="#fnref:3" class="footnote-back-ref">↩</a></p></li> <li id="fn:4"><p>Konstantin Ryabitsev (2014-08-18). "Linux Kernel Git Repositories Add 2-Factor Authentication". Linux.com. Archived from the original on 2018-01-31. Retrieved 2014-08-22. <a href="https://web.archive.org/web/20180131082600/https://www.linuxfoundation.org/blog/linux-kernel-git-repositories-add-2-factor-authentication/" target="_blank">https://web.archive.org/web/20180131082600/https://www.linuxfoundation.org/blog/linux-kernel-git-repositories-add-2-factor-authentication/</a> <a href="#fnref:4" class="footnote-back-ref">↩</a></p></li> <li id="fn:5"><p>Jonathan Corbet (2011-08-31). "The cracking of kernel.org". The Linux Foundation. Archived from the original on 2011-10-29. Retrieved 2011-11-08. <a href="https://web.archive.org/web/20111029105944/http://www.linuxfoundation.org/news-media/blogs/browse/2011/08/cracking-kernelorg" target="_blank">https://web.archive.org/web/20111029105944/http://www.linuxfoundation.org/news-media/blogs/browse/2011/08/cracking-kernelorg</a> <a href="#fnref:5" class="footnote-back-ref">↩</a></p></li> <li id="fn:6"><p>"Blog Archive » kernel.org down for maintenance?". Heimic. 2011-09-13. Archived from the original on 2011-09-23. Retrieved 2014-03-02. <a href="https://web.archive.org/web/20110923203507/http://www.heimic.net/2011/09/13/kernel-org-down-for-maintenance/" target="_blank">https://web.archive.org/web/20110923203507/http://www.heimic.net/2011/09/13/kernel-org-down-for-maintenance/</a> <a href="#fnref:6" class="footnote-back-ref">↩</a></p></li> <li id="fn:7"><p>"kernel.org is down!". 16 September 2011. <a href="https://mycottonsilk.wordpress.com/2011/09/16/kernel-org-is-down/" target="_blank">https://mycottonsilk.wordpress.com/2011/09/16/kernel-org-is-down/</a> <a href="#fnref:7" class="footnote-back-ref">↩</a></p></li> <li id="fn:8"><p>Fahmida Y. Rashid (2011-09-01). "Kernel.org hacked, but Linux kernel safe thanks to git". linuxfordevices.com. Archived from the original on 2013-01-27. Retrieved 2011-11-08. <a href="https://archive.today/20130127213718/http://www.linuxfordevices.com/c/a/News/Kernelorg-hacked/" target="_blank">https://archive.today/20130127213718/http://www.linuxfordevices.com/c/a/News/Kernelorg-hacked/</a> <a href="#fnref:8" class="footnote-back-ref">↩</a></p></li> <li id="fn:9"><p>Dan Goodin (2013-09-24). "Who rooted kernel.org servers two years ago, how did it happen, and why?". Ars Technica. Retrieved 2018-01-30. <a href="https://arstechnica.com/information-technology/2013/09/who-rooted-kernel-org-servers-two-years-ago-how-did-it-happen-and-why/" target="_blank">https://arstechnica.com/information-technology/2013/09/who-rooted-kernel-org-servers-two-years-ago-how-did-it-happen-and-why/</a> <a href="#fnref:9" class="footnote-back-ref">↩</a></p></li> <li id="fn:10"><p>"Feds pin brazen kernel.org intrusion on 27-year-old programmer". Ars Technica. <a href="https://arstechnica.com/tech-policy/2016/09/feds-pin-brazen-kernel-org-intrusion-on-27-year-old-programmer/" target="_blank">https://arstechnica.com/tech-policy/2016/09/feds-pin-brazen-kernel-org-intrusion-on-27-year-old-programmer/</a> <a href="#fnref:10" class="footnote-back-ref">↩</a></p></li> </ol>