SOURCE CODE REPOSITORY Sourceforge revealed that a number of its servers were attacked and compromised.
Sourceforge offers developers a location to distribute source code and coordinate resources within projects, however yesterday the outfit revealed that due to attackers exploiting several Sourceforge servers, a number of services had to be taken offline. At the time, Sourceforge added that it had been able to "safeguard data and protect the majority of our services".
Moving to batten down the hatches, Sourceforge took down its CVS servers, ViewVC, new release upload capabilities and interactive shell services.
Later in the day Sourceforge posted an update saying that its services would remain offline while it carried out work to "make sure our servers and services are hardened against future attacks". Sourceforge said that it is still "working to chart the full extent of the attacks" and is validating data against backups, but did not reveal more details on how its servers were compromised.
The services that are currently offline are generally used by developers and not ordinary users who use Sourceforge to download software. At present users can still browse the website and download software.
Sourceforge is a vital resource for many software projects, so developers are hoping that it not only brings its services back up quickly but strengthens its security to avoid such problems in the future. µ
'Some of us like the misery'
That'll surely affect its credit score