SourceForge hacked, but not to worry(?)
Valleywag reports that SourceForge.net was hacked Wednesday, resulting in site downtime while SourceForge tracked down the hacker. SourceForge's Ross Turk confirms the report:
We played a game of cat and mouse with a "security enthusiast" from Europe yesterday. :) No harm done, though, and everything's running smoothly.
Given that projects upload their code to the SourceForge repository on a regular basis, there's not any serious cause for concern that a security breach would be a long-term threat. Additionally, it's doubtful that anyone would download and install any critically important software in the minutes or hours a security breach might allow, get it into production, and incur serious liability as a result. Last time I checked, enterprise software adoption and implementation doesn't work quite that fast.
Still, it's cause for SourceForge to bolster its defenses, especially how it gets the word out in case of a breach.
Matt Asay is general manager of the Americas and vice president of business development at Alfresco, and has nearly a decade of operational experience with commercial open source and regularly speaks and publishes on open-source business strategy. He is a member of the CNET Blog Network and is not an employee of CNET. Disclosure.
%20%7C%20The%20Open%20Road%20-%20CNET%20News&srcUrl=http://news.cnet.com/8301-13505_3-9830638-16.html){kind=small}