The current LFNW site is running on Ruby on Rails, and has been patched for all known vulnerabilities - we use Hakiri ( https://hakiri.io/github/openSUSE/osem/master ) to keep up to date.
For the past few years we've used Drupal ( this is now at http://2017.linuxfestnorthwest.org if you were looking for it), and it has been patched this morning against SA-CORE-2018-004, and was patched for the prior vulnerability as well. Thanks for your concern, though! - James Mason ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On April 26, 2018 7:27 AM, Kalle Elmgren <[email protected]> wrote: > > > Is there a possibility that the LFNW site has been compromised? > > https://developers.slashdot.org/story/18/04/25/1956214/drupal-warns-of-new-remote-code-bug-the-second-in-four-weeks > > Fest-list mailing list > > [email protected] > > http://lists.blug.org/cgi-bin/mailman/listinfo/fest-list _______________________________________________ Fest-list mailing list [email protected] http://lists.blug.org/cgi-bin/mailman/listinfo/fest-list
