|Type of site||Open source repository|
kernel.org is a main repository of source code for the Linux kernel, the base of the popular Linux operating system. It makes all versions of the source code available to all users. It also hosts various other projects, like Google Android. The main purpose of the site is to host a repository for Linux kernel developers and maintainers of Linux distributions.
On 28 August 2011, developers at www.kernel.org realized that there had been a major security breach. Hackers had gained root access to the system and added a trojan to the startup scripts. Developers reinstalled all the servers and investigated the origin of the attack. It is likely, though not yet known, whether this is related to the LinuxFoundation.org and Linux.com website hacks found shortly afterwards.
Git, a distributed (and thus open) source management system designed to guarantee the integrity of the source code is used to keep track of changes in the Linux source code. This and the fact that the source code is available to anyone and widely known makes any attempt to tamper with the source code fairly easy to detect and revert if required.
kernel.org is not the primary repository, but rather a distribution point of the kernel sources.
As of November 2011, kernel.org is completely back up with the exception of a few secondary services.
As of September 2013, the site maintainers still have not published a report of how the breach occurred.
- Jonathan Corbet (31 August 2011). "The cracking of kernel.org". Developer blog. The Linux Foundation. Retrieved 8 November 2011.
- "Blog Archive » kernel.org down for maintenance?". Heimic. 2011-09-13. Retrieved 2014-03-02.
- kernel.org is down! « mycottonsilk
- Fahmida Y. Rashid (1 September 2011). "Kernel.org hacked, but Linux kernel safe thanks to git". Linux for devices (eWeek). Archived from the original on 27 Jan 2013. Retrieved 8 November 2011.
- Dan Goodin (2013-09-24). "Who rooted kernel.org servers two years ago, how did it happen, and why?". Ars Technica. Retrieved 2013-09-24.