Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 97D7F200B72 for ; Fri, 26 Aug 2016 12:09:34 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 9648A160AB6; Fri, 26 Aug 2016 10:09:34 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id DB0C5160AB0 for ; Fri, 26 Aug 2016 12:09:33 +0200 (CEST) Received: (qmail 88645 invoked by uid 500); 26 Aug 2016 10:09:32 -0000 Mailing-List: contact dev-help@community.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@community.apache.org Delivered-To: mailing list dev@community.apache.org Received: (qmail 88633 invoked by uid 99); 26 Aug 2016 10:09:32 -0000 Received: from mail-relay.apache.org (HELO mail-relay.apache.org) (140.211.11.15) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 26 Aug 2016 10:09:32 +0000 Received: from [192.168.1.36] (dk.quenda.co [90.184.204.23]) by mail-relay.apache.org (ASF Mail Server at mail-relay.apache.org) with ESMTPSA id D97DB1A009D; Fri, 26 Aug 2016 10:09:31 +0000 (UTC) Subject: Re: AW: Are Apache projects affected by the informations leaked by the NSA hack ? To: dev@community.apache.org References: Cc: Marco Esser From: Daniel Gruno Message-ID: Date: Fri, 26 Aug 2016 12:09:29 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 8bit archived-at: Fri, 26 Aug 2016 10:09:34 -0000 Hi Marco, I would suggest you check out https://musalbas.com/2016/08/16/equation-group-firewall-operations-catalogue.html for a review of the exploits supposedly found. There doesn't seem to be any ASF-related software mentioned, although it's of course always a possibility ;) With regards, Daniel. On 08/26/2016 12:00 PM, Marco Esser wrote: > Hi Mark, > > > Thank you for your quick response ! > I doesn't mean the leak by Edward Snowden. A group called Shadow Brokers hacked a least one NSA server. Edward Snowden thinks that it must be a NSA malware staging server. > > As far as I understand they spread some information and tools for free and want to have a lot of money to give away the rest. See these links as a start point to this story: > > http://www.wired.co.uk/article/nsa-hacking-tools-stolen-hackers > > https://theintercept.com/2016/08/19/the-nsa-was-hacked-snowden-documents-confirm/ > > [https://prod01-cdn06.cdn.firstlook.org/wp-uploads/sites/1/2016/08/NSA-drive-feature-hero.jpg] > > The NSA Leak Is Real, Snowden Documents Confirm > theintercept.com > A never-before-published NSA manual makes it clear that malware released by a hacker group this week came from the spy agency. > > > [https://prod01-cdn06.cdn.firstlook.org/wp-uploads/sites/1/2016/08/NSA-drive-feature-hero.jpg] > > The NSA Leak Is Real, Snowden Documents Confirm > theintercept.com > A never-before-published NSA manual makes it clear that malware released by a hacker group this week came from the spy agency. > > > > [http://wi-images.condecdn.net/image/PJPdyP8z5km/crop/1020] > > Hacking the hackers: everything you need to know about Shadow Brokers' attack on the NSA > www.wired.co.uk > A mystery group claims to be selling malware and tools used by America's National Security Agency > > > > > > ________________________________ > Von: Mark Thomas > Gesendet: Freitag, 26. August 2016 11:43 > An: dev@community.apache.org > Betreff: Re: Are Apache projects affected by the informations leaked by the NSA hack ? > > On 26/08/2016 10:13, Marco Esser wrote: >> Hello All, >> >> i hope Im posting my question to the right mailing list. I searched a long time for as better place but dint find one. >> >> >> Does somebody analyze the available information from the NSA Hack regarding influence on software developed in the apache projects ? > > I assume you mean the leaks by Edward Snowden. I don't recall seeing > anything in the news regarding the NSA being hacked. > > I'm involved in the Apache security team and the Apache Tomcat project. > I'm not aware of any analysis of the Snowden leak w.r.t. vulnerabilities > in / back-doors in / influence on Apache software. > >> My special interest is to get knowledge about NSA hack tools or the try to implement backdoors, etc in the following software used by my customers: >> >> Apache HTTP >> Tomcat applicationserver >> popular modules for both servers > > I've only investigated the Tomcat vulnerabilities in any depth. None of > the issues I have seen in my long involvement in the Apache Tomcat > project has been suggestive of a deliberate back door being placed in > the code. > > Mark > > --------------------------------------------------------------------- > To unsubscribe, e-mail: dev-unsubscribe@community.apache.org > For additional commands, e-mail: dev-help@community.apache.org > > --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@community.apache.org For additional commands, e-mail: dev-help@community.apache.org