Git hub potetial hack!!

by **Julio Jerez** » Tue Apr 05, 2016 2:44 pm

I have this,

The following SSH key was added to your account:

GitHub Desktop - NewtonWindows

If you believe this key was added in error, you can remove the key and disable
access at the following location:

does anyone know what it means?

by **Shaderman** » Tue Apr 05, 2016 3:08 pm

Hi Julio,

I just found one link to stackoverflow.

Hope it helps.

by **Jop** » Tue May 03, 2016 8:21 am

I'd revoke the key and change your password ASAP :shock:

Just to be sure. What would anybody have to gain with this hack though, I wonder... Watch for weird commits in the repo that you didn't do.

by **Julio Jerez** » Tue May 03, 2016 9:25 am

Oh thank, I did delete the key, but as soon as I did it, the same key was generated and I got the same message.
I think Github make the automatically, using some king of algorithm.

but yes you are right put bad stuff in open source project with be a way for malicious people operate.
But I check the engine with several scanner and nothing is different.

Thank you for the advice.

by **Sweenie** » Tue May 03, 2016 10:58 am

Do you use GitHub for Desktop?

I noticed that when I installed it it set some global username and email which it took from the windows environment.

by **Julio Jerez** » Tue May 03, 2016 11:13 am

yes I think that what happened. It did the same on the Mac too.
I change my account from my name to NewtonDynamics and that's when the key hose up.

I do not know how to use the github command line tool. and I am no interested in knowing either.

Git hub potetial hack!!

Git hub potetial hack!!

Re: Git hub potetial hack!!

Re: Git hub potetial hack!!

Re: Git hub potetial hack!!

Re: Git hub potetial hack!!

Re: Git hub potetial hack!!

Who is online