← Home ← Back to /g/

Thread 105971333

31 posts 8 images /g/
Anonymous 7/20/2025, 10:56:57 PM No.105971333 [Report] >>105971343 >>105971364 >>105971439 >>105971521 >>105971579 >>105971585 >>105971754 >>105972178 >>105972448 >>105974933 >>105974936 >>105975017
archlinux.jpg md5: 2c3e8e00...
which ones of you got raped by the AUR malicious packages in Arch Linux?

- librewolf-fix-bin
- firefox-patch-bin
- zen-browser-patched-bin
https://linuxiac.com/malware-discovered-in-arch-linux-aur-packages/
Anonymous 7/20/2025, 10:57:56 PM No.105971343 [Report] >>105974286
>>105971333 (OP)
nobody, because it got removed after 10 minutes
Digital Nomad 7/20/2025, 10:59:51 PM No.105971364 [Report] >>105971549 >>105971612
f12.jpg md5: 71ba5887...
>>105971333 (OP)
one of the packages was called minecraft-cracked
literally who in the fuck would fall for this?
Anonymous 7/20/2025, 11:09:00 PM No.105971439 [Report] >>105972392 >>105975124
>>105971333 (OP)
Only the niggers/jeets that are unable to check the PKGBUILD of things they are installing.
Anonymous 7/20/2025, 11:11:05 PM No.105971452 [Report] >>105971807 >>105972361
You're supposed to at least skim PKGBUILDs before making them. most are quite short as well, is it that hard to check if it's downloading stuff from the website it's supposed to?
also is there an archived version of those pkgbuilds? I'd like to see how hard they tried to obfuscate it
Anonymous 7/20/2025, 11:21:17 PM No.105971521 [Report]
>>105971333 (OP)
you would only install those on accident so unless you can read it's not an issue

i have never read a PKGBUILD in my life and i never will because i don't know how and i refuse to learn it
Anonymous 7/20/2025, 11:24:00 PM No.105971549 [Report] >>105971555 >>105971678
>>105971364
>literally who in the fuck would fall for this?
Retarded winfags who pirate all of their games. These "people" will literally disable their antivirus to install sketchy repacks.
Anonymous 7/20/2025, 11:25:15 PM No.105971555 [Report] >>105971631
>>105971549
these people are on linux mint at best.
Anonymous 7/20/2025, 11:27:26 PM No.105971579 [Report]
>>105971333 (OP)
How would anyone even find these packages and why would they install them? Malware masquerading as known programs is a tale as old as time, and this isn't even a particularly convincing implementation. You would either need to be searching for binaries to patch your browser with (for some reason) or hear about these patches elsewhere and then install them. I'm confident the amount of retards who somehow found and installed these packages is in the single digits. Honestly it's about the same as finding a fake Firefox exe on windows in the browser, but perhaps harder because SEO isn't a thing.
Anonymous 7/20/2025, 11:27:53 PM No.105971585 [Report] >>105974130
>>105971333 (OP)
Linux users are just as retarded as Windows users. No-one is special.
Anonymous 7/20/2025, 11:31:09 PM No.105971612 [Report]
>>105971364
>who would fall for this?
There's no evidence anyone did. It's just ragebait so people can shitpost against arch or assume people they don't like downloaded these packages and then use their assumption to call said group retards.
Anonymous 7/20/2025, 11:33:45 PM No.105971631 [Report]
>>105971555
Some of them install Arch because it's good for gaming (newer packages). They've brought Arch back to the 00s years when it was a distro used mainly by dumb kids who ran everything as root.
Anonymous 7/20/2025, 11:41:45 PM No.105971678 [Report]
>>105971549
Why does anti virus software almost always detect cracks as malware anyway?
Anonymous 7/20/2025, 11:49:02 PM No.105971754 [Report]
>>105971333 (OP)
>- librewolf-fix-bin
>- firefox-patch-bin
>- zen-browser-patched-bin
Nobody installed these. Nothingburger.
Anonymous 7/20/2025, 11:54:32 PM No.105971807 [Report] >>105972361
>>105971452
Some people use shit like yay and don't read the pkbuilds lol.
Anonymous 7/21/2025, 12:33:43 AM No.105972178 [Report]
1000004620.png md5: 2de2b7fc...
>>105971333 (OP)
I am a pirate and I use Arch. Alhamdulilah
Anonymous 7/21/2025, 12:51:37 AM No.105972361 [Report]
>>105971452
>You're supposed to at least skim PKGBUILDs before making them. most are quite short as well
Literally just scanning for URLs and making sure they all match the github you're pulling from is usually good enough.
>>105971807
yay shows PKGBUILDs before it will will install. You can close them without reading them but at that point, you're really just asking for it and it's your fault.
Anonymous 7/21/2025, 12:54:38 AM No.105972384 [Report]
most obvious malware package name award
Anonymous 7/21/2025, 12:55:39 AM No.105972392 [Report]
>>105971439
What a coincidence, only niggers use Arch
Anonymous 7/21/2025, 1:01:29 AM No.105972448 [Report] >>105974040
>>105971333 (OP)
Arch is a fucking joke and I will always say it's a fucking joke
Anonymous 7/21/2025, 4:52:46 AM No.105974040 [Report]
>>105972448
no it's not
Anonymous 7/21/2025, 4:59:41 AM No.105974090 [Report]
I don’t use the AUR, I don’t have the want need or computing power to. So I got pretty lucky.
Anonymous 7/21/2025, 5:04:52 AM No.105974120 [Report] >>105974881
nobody will post their pacman -Qqm so im going to assume literally nobody here uses arch.
Anonymous 7/21/2025, 5:06:08 AM No.105974130 [Report]
>>105971585
If I use both am I twice as retarded or half as retarded
Anonymous 7/21/2025, 5:15:01 AM No.105974169 [Report]
NOBODY installed those, and they were caught within a day
Anonymous 7/21/2025, 5:36:49 AM No.105974286 [Report]
>>105971343
>The issue came to light on July 16 when a user uploaded a malicious package, librewolf-fix-bin, to the AUR. Within hours, two more packages—firefox-patch-bin and zen-browser-patched-bin—followed, all traced back to the same bad actor.
>By July 18, all three malicious packages had been removed from AUR.
a tad bit more than 10 minutes
Anonymous 7/21/2025, 7:44:35 AM No.105974881 [Report]
metaprint.png md5: a2b8db25...
>>105974120
It's just boring. Here you go. Enjoy. No idea why phonon is even on there, considering it's pulled by KDE.
Anonymous 7/21/2025, 7:54:36 AM No.105974933 [Report]
>>105971333 (OP)
>muh packaging is so much better and more secure
>installs 2000 packages from random chuds instead of the developers
every "pro" of using linux is actually a con
Anonymous 7/21/2025, 7:54:48 AM No.105974936 [Report]
>>105971333 (OP)
i don't use arch btw
Anonymous 7/21/2025, 8:10:55 AM No.105975017 [Report]
>>105971333 (OP)
linux is a thread to the ai surveillance they put in microsoft and apple.
glowies & co up their 'linux is bad' narrative, start adding malware packages to popular distro's.

imagine being a glowie.
like a dog who's told "you're such a good boy" by its government.
what a pathetic existence.
Anonymous 7/21/2025, 8:26:34 AM No.105975124 [Report]
>>105971439
implying it's not a jeet that pushed this to make garuda look better