Open Source software portal SourceForge is asking users to change their passwords following an update to the site's security systems.

The company said that it would require users to choose new passwords upon logging into their SourceForge user accounts.

The move comes as online retail giant eBay continues to wrestle with the fallout from a breach of its systems. That company admitted that it had been compromised, and that attackers were able to access database information that included encrypted passwords and physical address information.

More recently, eBay has moved to ward off claims that the attackers who perpetrated the breach were able to decrypt passwords and are now selling off the lifted data. Regardless, eBay users have been instructed to change their passwords as a precautionary measure.

According to SourceForge, no such breach is behind its decision to require users to change their passwords. Instead, the site said that it was implementing a new security system that will modify the way it handles and stores user credentials.

"To make sure we're following current best practices for security, we've made some changes to how we're storing user passwords," administrators said in a blog post announcing the move.

"As a result, the next time you go to login to your SourceForge.net account, you will be prompted to change your password. Once this is done, your password will be stored more securely."

When contacted, SourceForge said that the password updates were part of a previously plan, but announced security update rather than a reaction to eBay's recent trouble.

In the process of changing passwords, SourceForge is also asking users to choose a secure new password (as opposed to the incredibly weak ones users often select), and the site is reminding users of security best practices such as avoiding untrusted links and never sending password information in emails or entering them into suspicious recovery sites. ®

Related stories

• SourceForge goes TITSUP thanks to storage fault (17 July 2015)

  https://www.theregister.com/2015/07/17/souceforge_titsup/

• MIT and CERN's secure webmail plan stumped by PayPal freeze (1 July 2014)

  https://www.theregister.com/2014/07/01/proton_mail_caught_by_paypal_processing_freeze/

• eBay slammed for daft post-hack password swap advice (22 May 2014)

  https://www.theregister.com/2014/05/22/ebay_dodgy_password_change_advice/

• CERN and MIT chaps' secure webmail stalled by stampede of users (22 May 2014)

  https://www.theregister.com/2014/05/22/proton_mails_cryptoformugs_stalled_by_success/

• PayPal Manager bug left web stores open to cyber-burglars (21 May 2014)

  https://www.theregister.com/2014/05/21/paypal_account_hijack_vuln_patched/

• EBay, you keep using the word 'SECURITY'. I do not think it means what you think it means (21 May 2014)

  https://www.theregister.com/2014/05/21/ebay_breach/

• AVG on Heartbleed: It's dangerous to go alone. Take this (an AVG tool) (20 May 2014)

  https://www.theregister.com/2014/05/20/heartbleed_still_prevalent/