TAILS site Defaced...hacked by script kidding...Danger?

went to this sub saw nothing of this, maybe nothing or compromised ISO's?


Comments


[2 Points] sohhlz:

I downloaded and checked the current 1.0.1 ISO after the hack and the SHA-256 checksum was still the same as before the hack:

sha256sum tails-i386-1.0.1.iso

7fc568ce730feaf140178ab3a326e8e1df6078f48801f67355d641ac3bc47f0e  tails-i386-1.0.1.iso

Tails checksum:

https://tails.boum.org/inc/stable_i386_hash/


The PGP signature was also still good:

gpg --verify tails-i386-1.0.1.iso.sig 

gpg: Signature made Sun 08 Jun 2014 12:32:53 PM MST
gpg:                using RSA key 0x1202821CBE2CD9C1
gpg: Good signature from "Tails developers (signing key) <tails@boum.org>" [ultimate]
gpg:                 aka "T(A)ILS developers (signing key) <amnesia@boum.org>" [ultimate]

I believe that the ISO is kept on servers separate from the main website as well.

That being said, always verify your download.


[2 Points] eminem56:

Looks all right to me. Maybe they fixed it.


[2 Points] il0vedrugs:

In what way is it defaced?


[2 Points] Throw_meaways:

If you search tails on google you can still see the hack message in the website description


[2 Points] Trappy_Pandora:

In order for the ISO to be compromised the hacker would have had to phish the download url so check your history and compare the download url of today with the download url of yesterday and the url from before the hack. The download servers could also have been compromised but that is a lot more work than simply phishing a download link. Its highly unlikely that the download servers would have been compromised.


[2 Points] c0derx:

how do you know it was a "script kiddie" ?


[2 Points] KarmaTaBurn:

wtf!?!?!?!?!

nmap -sU


[1 Points] Feed_Your_Head_:

Must not have been for long, all fine here. Good thing i didn't do an update today.


[0 Points] None:

[deleted]


[-1 Points] None:

[deleted]