On Sat, 2024-09-07 at 13:44 -0700, Mike Wright wrote: > On 9/6/24 06:28, George N. White III wrote: > > On Fri, Sep 6, 2024 at 12:04 AM Tim via users > > <users@lists.fedoraproject.org> > > wrote: > > > > > On Thu, 2024-09-05 at 13:11 -0400, Jeffrey Walton wrote: > > > > This made my radar today: > > > > < > > > https://jfrog.com/blog/revival-hijack-pypi-hijack-technique-exploited-22k-packages-at-risk/ > > > > . > > > > It's like Peter Gutmann said: "A great many of today’s security > > > > technologies are “secure” only because no-one has ever bothered > > > > attacking them." > > > > > > Security failures like this exist in many other things: You give up a > > > telephone service, someone acquires your old number, people use your > > > old phone number to exploit you. Likewise with email addresses. I've > > > kept old email addresses just to stop someone else misusing them. > > > > > > > I have an account on a community network that was the first public > > access to internet where I live. My extended family includes kids, and > > I have noticed increases in smap messages (currently running around 100 > > per day) when kids get internet access and also times when corresponding > > with friends and relatives after someone dies. > > Hi George, > > How do you identify smap traffic? It's not listed in /etc/services and > I can't find an assigned port number on the intertube ( actually, not > much of anything except it being a way to pass SMS between computers and > that was cursory ).
This seems to be getting way off-topic for the thread. I suggest that interested parties start a new thread focussed on these security issues, which is not what I was originally asking about. poc -- _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
