A few days ago we had to Chakra around here with the launch of its latest version. Today we return to the distro more ‘kdeera’ the picture for a very different matter: Community repository has been hacked .
news found in The Chakra Bay, a new Spanish-language blog dedicated to covering news about Chakra that I recommend to all users of the distro. By all accounts, one called “Troll” has infiltrated the CCR (the Chakra Community Repository, as the Arch Linux AUR) and is dedicated to packages and delete user accounts .
seems that site administrators have managed to block the attacker, but the repository is unusable at the moment, in read-only mode, while troubleshooting some vulnerabilities in code . When ready will turn up any missing packages and will start a campaign to adopt packages that have no maintainer.
not the first time something like this happens, I’m sure you remember the security breach that affected sites or kernel.org Linux Foundation, but unlike those this time there have been only vandalism , which is something, but not the worst thing that could have happened. I wonder what might have no interest in doing something like this …