Linked by Thom Holwerda on Wed 16th Dec 2009 21:38 UTC, submitted by whorider
Privacy, Security, Encryption This news is already a week old, but it only got submitted to us today, and I didn't notice it all. As it turns out, two malicious software packages had been uploaded to, masquerading as valid .deb packages (a GNOME screensaver and theme, respectively).
Permalink for comment 400008
To read all comments associated with this story, please click here.
eugh @
by Beta on Wed 16th Dec 2009 23:33 UTC
Member since:

eugh @

‘This minor incident highlights both the inherent strength of the repository system, as well as one of its weaknesses.’

GNOME-LOOK is a third party collection of themes that you can install at your own risk. It’s nearly the same as getting a porn pop-up with a .deb file link in.
This has nothing to do with repository systems, and 100% to do with trust.

Reply Score: 4