EPrints Technical Mailing List Archive

See the EPrints wiki for instructions on how to join this mailing list and related information.

Message: #10104


< Previous (by date) | Next (by date) > | < Previous (in thread) | Next (in thread) > | Messages - Most Recent First | Threads - Most Recent First

[EP-tech] Ask about hacker add google-site-verification in our repository


CAUTION: This e-mail originated outside the University of Southampton.
Hi,

Yesterday I suddenly received an email stating that my repository has a new owner, and when I checked, it turned out that they added google-site-verification.

image.png

I already removed the other person and their google-site-verification, but I am afraid it will show up again.

For your information, our repository server only contains eprints and no other applications. We have also patched the repository with the EPrints 3.4.2 February 2021 security patch update from https://files.eprints.org/2548/.

What I want to ask is, how can we prevent this from happening? Does this mean that hackers can edit our files?

Please help.

Thank you
Regards,
Agung PW