Fri Nov 16 2001 18:11 The Story So Far: So. A few days ago, someone took advantage of the ancient Chinese sshd installed on the machine that hosts Segfault and Crummy (not to mention Scott's site) to deface the Segfault main page. I un-defaced Segfault and tried to get in contact with the VA folks. The VA guy who I'd talked to in the past (David Ford) turns out no longer to be at VA; he's been laid off, as has anyone else who might have concievably been in charge of that machine. So we were basically screwed as far as went fixing the problem. Fortunately, David knew the root password to the machine; he gave Scott and myself accounts on a machine he hosts, and agreed to host our sites in the short term. The next day, the Segfault machine was off the net. I don't know if VA took it off or if someone exploited the same sshd vulnerability and typed 'halt". I have a full backup of Crummy and an up-to-date dump of the Segfault database. I don't have the Segfault source code, and Scott didn't get Netsplit backed up in time. So Crummy can go back up pretty soon, but Segfault is down until we get the code back or write new code; and Netsplit is down unless Scott gets his content back.