[Project_owners] [URGENT] Action required: mozdev security flaw

Joachim Herb Joachim.Herb at gmx.de
Tue Sep 28 09:52:32 PDT 2010

Has disabling PHP broken http://downloads.mozdev.org/ ?


Am 27.09.2010 18:46, schrieb Eric H. Jung:
> Hello,
> It has been brought to the attention of the mozdev board of directors,
> system administrators, and volunteers that the mozdev.org
> <http://mozdev.org> hosting code has critical security flaws. The
> short-term fix is to /immediately /disable PHP on mozdev project pages
> except for those projects that:
> 1. Explicitly request PHP enabled for their project by emailing
> sysadmin at mozdev.org <mailto:sysadmin at mozdev.org>,
> and
> 2. Are granted such request by executive decision of mozdev.org
> <http://mozdev.org>'s board, system administrators, and/or volunteers.
> If you require PHP for your project, please email sysadmin at mozdev.org
> <mailto:sysadmin at mozdev.org>. We will not be waiting to hear from you;
> PHP is being disabled *today*.
> We apologize for the short notice, but we have information that
> mozdev.org <http://mozdev.org> may be attacked by nefarious individuals.
> Kind regards,
> Eric Jung
> _______________________________________________
> Project_owners mailing list
> Project_owners at mozdev.org
> https://www.mozdev.org/mailman/listinfo/project_owners

More information about the Project_owners mailing list