{"id":121,"date":"2011-09-13T01:13:15","date_gmt":"2011-09-13T01:13:15","guid":{"rendered":"http:\/\/www.kodcafe.com\/?p=121"},"modified":"2011-09-13T01:13:15","modified_gmt":"2011-09-13T01:13:15","slug":"kernel-org-saldiri-yapildi","status":"publish","type":"post","link":"http:\/\/www.kodcafe.com\/?p=121","title":{"rendered":"Kernel.Org Saldiri Yapildi"},"content":{"rendered":"<p>Bu ay\u0131n ba\u015f\u0131nda, kernel.org sunucular\u0131n\u0131n bir k\u0131sm\u0131nda alt yap\u0131 tutars\u0131zl\u0131klar\u0131 tespit edildi. Olay\u0131n sald\u0131r\u0131 kaynakl\u0131 oldu\u011fu san\u0131lmakla beraber ara\u015ft\u0131rmalar h\u00e2l\u00e2 devam ediyor.<\/p>\n<p>Peki Ne Oldu?<br \/>\n# Hera sunucusuna, yetkisiz giri\u015f yap\u0131ld\u0131 ve y\u00f6netici (root) haklar\u0131 al\u0131nd\u0131. Bunun siteden birinin hesab\u0131n\u0131n g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan kaynakland\u0131\u011f\u0131 d\u00fc\u015f\u00fcn\u00fclse de, giri\u015f yap\u0131ld\u0131ktan sonra y\u00f6netici haklar\u0131n\u0131n nas\u0131l al\u0131nd\u0131\u011f\u0131 konusu hala bir muamma durumunda, ara\u015ft\u0131rmalar ise devam ediyor.<br \/>\n# SSH\u2019a ait (openssh, openssh-server ve openssh-clients) dosyalar de\u011fi\u015ftirildi ve \u00e7al\u0131\u015f\u0131r duruma getirildi.<br \/>\n# Sistem ba\u015flang\u0131c\u0131na trojan zararl\u0131s\u0131 giri\u015fi yap\u0131ld\u0131.<br \/>\n# Kullan\u0131c\u0131 etkile\u015fimleri\/ili\u015fkileri ile beraber sistem a\u00e7\u0131klar\u0131n\u0131 istismar edecek kodlar \u00e7al\u0131\u015ft\u0131r\u0131ld\u0131 ve aktive edildi. (hen\u00fcz ortaya \u00e7\u0131kan geli\u015fme)<br \/>\n<!--more--><br \/>\n#Trojan\u0131n varl\u0131\u011f\u0131, Xnest y\u00fckl\u00fc olmayan bilgisayarlarda; Xnest kaynakl\u0131 hata mesajlar\u0131n\u0131n (Xnest \/dev\/mem tabanl\u0131) belirmesi ile fark edildi. \u015eu an bu hata mesaj\u0131 ile kar\u015f\u0131la\u015fan sistemlerin, etkilenip etkilenmedikleri hakk\u0131nda kesin bir veri yok. Site y\u00f6netimi, bu mesaj\u0131 alan geli\u015ftiricilerin ara\u015ft\u0131rma yapmas\u0131n\u0131 ve geri bildirimde bulunmalar\u0131n\u0131 rica ediyor.<br \/>\n# -\u00d6yle g\u00f6r\u00fcn\u00fcyor ki-, \u201c3.1-rc2\u2033 g\u00fcncelle\u015ftirmesi y\u00fckl\u00fc sistemler, a\u00e7\u0131\u011f\u0131 y\u00fckleyen arac\u0131 yaz\u0131l\u0131m\u0131 engelliyor. Bunun bir yan etki ya da hata yamas\u0131 olup olmad\u0131\u011f\u0131 bilinmiyor.<\/p>\n<p>\u0130ngilizce asl\u0131ndan \u00dclfet \u00c7ET\u0130N (@BLaZeBLaST ) taraf\u0131ndan \u00e7evrilen haberin tamam\u0131n\u0131 okumak i\u00e7in bu sayfay\u0131 ziyaret edebilirsiniz.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bu ay\u0131n ba\u015f\u0131nda, kernel.org sunucular\u0131n\u0131n bir k\u0131sm\u0131nda alt yap\u0131 tutars\u0131zl\u0131klar\u0131 tespit edildi. Olay\u0131n sald\u0131r\u0131 kaynakl\u0131 oldu\u011fu san\u0131lmakla beraber ara\u015ft\u0131rmalar h\u00e2l\u00e2 devam ediyor. Peki Ne Oldu? # Hera sunucusuna, yetkisiz giri\u015f yap\u0131ld\u0131 ve y\u00f6netici (root) haklar\u0131 al\u0131nd\u0131. Bunun siteden birinin hesab\u0131n\u0131n g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan kaynakland\u0131\u011f\u0131 d\u00fc\u015f\u00fcn\u00fclse de, giri\u015f yap\u0131ld\u0131ktan sonra y\u00f6netici haklar\u0131n\u0131n nas\u0131l al\u0131nd\u0131\u011f\u0131 konusu hala bir [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":73,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1,15,3],"tags":[223],"class_list":["post-121","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-genel","category-guvenlik","category-linux","tag-kernel"],"_links":{"self":[{"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=\/wp\/v2\/posts\/121","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=121"}],"version-history":[{"count":0,"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=\/wp\/v2\/posts\/121\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=\/"}],"wp:attachment":[{"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=121"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=121"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.kodcafe.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=121"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}