A few days ago I read in a link somewhere that perl.com had been stolen and appeared to be parked for sale, as squatters do. This sounded merely annoying, and I can't find the original link.
Today I looked at the latest URI release and saw that it changed perl.com to example.com in tests and examples. I mentioned that in the ticket, Doug asked if there were security issues. I was about to say no, but one of the links google found was https://www.bleepingcomputer.com/news/security/perlcom-domain-stolen-now-using-ip-address-tied-to-malware/ That says that the current address is associated with malware campaigns, and further down it says: Until the domain hijacking is resolved, perl.org is recommending that users do not use perl.com as a CPAN mirror and to update it using the following command: | # perl -MCPAN -eshell | cpan shell -- CPAN exploration and modules installation (v2.20) | Enter 'h' for help. | | cpan[1]> o conf urllist http://www.cpan.org/ | Please use 'o conf commit' to make the config permanent! | cpan[2]> o conf commit | commit: wrote '/root/.cpan/CPAN/MyConfig.pm' So anyone using CPAN needs to make sure they do not use perl.com as a mirror, and if you have done so since 27th January (when it was pointed to the Google Cloud IP address (35.186.238[.]101.) you will wish to review what is on your system(s). ĸen -- The right of the people to keep and arm Bears, shall not be infringed. -- http://lists.linuxfromscratch.org/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
