Skip to main content
  1. Home
  2. Computing
  3. News

SourceForge accused of hijacking Nmap project account

By

Hacker
hamburg_berlin/Shutterstock
Open source software download site SourceForge has come under criticism again, this time for allegedly taking over the account of the Nmap security auditing software, according to its developer in an email to users.

The news comes days after SourceForge was accused of “hijacking” the account of image editing program, GIMP and bundling it in a downloader with adware. According to a report from Ars Technica, SourceForge has been assuming control of pages that are inactive.

Recommended Videos

“The old Nmap project page is now blank,” said Nmap’s developer Gordon “Fyodor” Lyon, who posted on Seclists after making the discovery. He claims that SourceForge, which is owned by Slashdot Media, has moved all of Nmap’s content to a new page that only SourceForge has control of.

Please enable Javascript to view this content

“So far they seem to be providing just the official Nmap files (as long as you don’t click on the fake download buttons) and we haven’t caught them trojaning Nmap the way they did with GIMP,” he said. “But we certainly don’t trust them one bit!”

Lyon added that he will ask Sourceforge to remove the new page and directed users to the official Nmap website for downloading the program.

In response, SourceForge’s senior director of business development Roberto Galoppini stated that it has never modified the Nmap project at all.

“We find no indication that the “nmap” project has ever contained files, delivered any downloads, or had any changes made aside from the automated migration from our old SourceForge platform to the new platform which is powered by Apache Allura,” he wrote in a reply to Ars Technica’s queries.

“At the end of 2011, we established a SourceForge-hosted mirror of the nmap software, using verbatim copies of nmap’s releases, and have continued to keep that mirror up-to-date since.”

Earlier this week, SourceForge also published a blog stating that from now on any third party offers for un-maintained SourceForge projects will be opt-in only. This was in response to bundling ads with GIMP.

The code repository was sharply criticized for its practice when it was revealed that the Windows version of GIMP was archived on a SourceForge mirror site and loaded with third party ads, or adware. Sourceforge had done so as the GIMP page on its site had been left unmaintained with the program now usually downloaded elsewhere.

Editors’ Recommendations

Topics
Jonathan Keane
Jonathan Keane
Former Digital Trends Contributor
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
Nvidia celebrates Trump, slams Biden for putting AI in jeopardy
The Nvidia RTX 5090 GPU.

In response to new export restrictions placed on AI GPUs, Nvidia posted a scathing blog criticizing the outgoing Biden-Harris administration. The administration's Interim Final Rule on Artificial Intelligence Diffusion largely targets China with restrictions on AI GPUs, according to Newsweek.

Nvidia disagrees. "While cloaked in the guise of an 'anti-China' measure, these rules would do nothing to enhance U.S. security. The new rules would control technology worldwide, including technology that is already widely available in mainstream gaming PCs and consumer hardware. Rather than mitigate any threat, the new Biden rules would only weaken America’s global competitiveness, undermining the innovation that has kept the U.S. ahead," wrote Nvidia's vice president of government of affairs Ned Finkle.

Read more
This new DirectX feature could completely change how PC games work
A scene from Fortnite running in Unreal Engine 5.

Microsoft has announced that neural rendering capabilities are coming to DirectX soon. Cooperative vector support, as it's called, will lead to "cross-platform enablement of neural rendering techniques," according to Microsoft, and it will usher in "a new paradigm in 3D graphics programming."

It sounds buzzy, but that's not without reason. This past week, Nvidia announced its new range of RTX 50-series graphics cards, and along with them, it revealed a slate of neural rendering features. Neural shaders, as Nvidia calls them, allow developers to execute small neural networks from shader code, running them on the dedicated AI hardware available on Nvidia, AMD, Intel, and Qualcomm GPUs. Microsoft is saying that it will enable these features on all GPUs, not just those sold by Nvidia, through the DirectX API.

Read more
This gaming PC with an RTX 4060 is on sale for $1,000 today
The iBuyPower Trace 7 on a white background.

Best Buy often has some great gaming PC deals, with one highlight available today: Right now, you can buy the iBuyPower Trace 7 gaming PC for $1,000 instead of $1,300. The PC includes the RTX 4060 GPU, so it’s ideal for mid-range gaming. It even comes with a keyboard and mouse, so you only need to make sure you have a screen to add to it. If you’re looking to upgrade your gaming PC for less, here’s what it has to offer.

Why you should buy the iBuyPower Trace 7
You won’t see anything from iBuyPower in our look at the best gaming PCs, but don’t let that discourage you. This is still a good option for those on a budget. This particular model has great hardware for the price. It has an AMD Ryzen 7 5700 CPU teamed up with 16GB of RAM and 1TB of SSD storage. More pivotal for a gaming PC is its graphics card: a GeForce RTX 4060 with 8GB of VRAM.

Read more