The Fedora Project has posted an announcement advising current users of the Fedora Account System to change their password and SSH public key before 30 November or risk their accounts being marked as inactive. The information was posted to the Fedora “announce” mailing list by Infrastructure Lead Kevin Fenzi, who stated that the change was “due to the large number of high profile sites with security breaches in recent months”. Recently reported breaches include those of WineHQ, The Linux Foundation and kernel.org. The new move is precautionary, and is not due to any “specific compromise or vulnerability in Fedora Infrastructure”.
Read more: The H Security