(WEB HOST INDUSTRY REVIEW) — The websites of open-source developer Apache (www.apache.org) was knocked offline for three hours Friday morning after one of its servers sufferend a breach.
The websites displayed this message:
“The Infrastructure Team of The Apache Software Foundation is currently investigating a potential compromise of one of our servers. For security reasons most apache.org services are therefore offline, but will be restored shortly. We apologies for any inconvenience this may cause.”
In the message, Apache explained that the compromise was the result of a compromised SSH key, and “not due to any software exploits in Apache itself”.
Service was eventually restored three hours laters, and at 10:53 a.m. UTC, Apache posted this message:
“We have restored services on our european mirror machine which was not compromised. DNS should be shifting you over right about … now…”
The software developer has not specified which servers were affected by the breach. In 2001, Apache.org was hit by a server breach after an SSH key was exposed.
Apache has led the Netcraft’s Web Server Survey since 1996, and last month, it had about 47 percent share of the overall web server market.
