#93 closed Security Issue (Done)

Looks like mary (gitea) was hacked.

Reported by: D Delmar Davis Owned by: D Delmar Davis
Priority: Priority Milestone: Make Shit Happen / Own Your Shit.
Component: Development Keywords:
Cc: Joe Dumoulin

Description

So far they just added a bunch of accounts and a few repositories.
Am archiving the container.

Deleted the shit and updated the admin passwords.

Will keep an eye on it. If it needs rebuilding we'll figure it out.

Change History (2)

comment:1 Changed 13 months ago by D Delmar Davis

Seems that openid based registration was enabled. Doh.

comment:2 Changed 13 months ago by D Delmar Davis

Resolution: Done
Status: assignedclosed

Can't find any further ingress. Just people registering with existing openids.

Note: See TracTickets for help on using tickets.