116
Arch Linux Blocks New AUR Registrations Amid Malware Cleanup
(linuxiac.com)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 16 Jun 2026
116 points (98.3% liked)
Linux
13986 readers
691 users here now
A community for everything relating to the GNU/Linux operating system (except the memes!)
Also, check out:
Original icon base courtesy of lewing@isc.tamu.edu and The GIMP
founded 3 years ago
MODERATORS
Anyone infected is at their own fault. Literally every single ressource and official statement is "read the diff of what you execute", which would prevent 100% of the attacks.
I'd rather not get cut off from my regular updates for some idiots who can't read or think rules don't apply to them. And yes, people who don't understand the PKGBUILD format shouldn't use the AUR on their own.
100%
But this is the problem. It's like if Microsoft provided Windows with Limewire as a solution to download software. There's bound to be people who are going to exploit it for malicious reasons, and there's bound to be idiots who are going to fall for it. Heck, there's the possibility that even someone who knows what they're doing might also get caught at some point.
It's dangerous and irresponsible.
Peak Linux nerd shit.
People just want their updates to work and you're out here screeching that users are holding it wrong and to read a bunch of diffs 🤣
No no, they're right. This is arch linux, people demonstrably do not 'just' want their updates to work
No, it's actual reality. There are more than a hundred thousand packages in the AUR. There are explicit warnings that these are user content and should be used with care.
And now a miniscule percentage (~1%) of orphaned packages, so those with very little interest in, are taken over by some malicious actors to spread malware.
And people suddenly pretend like this is a catastrophe for Linux (no one cares) and for Arch and it's derivates (who don't operate the AUR be definition and explicitly warn against using it without caution). If I told you that not 1, but 10% of the most obscure software packages you can download and install on Windows are pure malware, you wouldn't even blink an eye. And yet all the morons now come crawling from their caves flooding everything with memes and bullshit of "haha, now we know you lied to us and Linux isn't secure at all!".
I think we should be proud. Linux is finally large enough to at least sort of get "hit" by a malware campaign, and it demonstrates the ease with which thousands of infected packages can be cleaned, because they are centralized to a few repositories. M$'s only bet would be to update Defenders' index and cross fingers that the signature doesn't change.
Windows malware is always way out of control of M$, while that's also the norm of uninfected programs.
Almost all Linux programs are by design installed from a central repo.
That's like saying "i just want to bungee jump off this bridge" when the bridge is 10m above active traffic.
This piece of infrastructure is not designed to work this way. It's made for linux nerds. Not unknowing users. And I don't see why the AUR should punish the former because the latter are ignorant. So either be able to understand and actively read the things you're running or just don't.
There are plenty of other distros users can choose from, if they don't want to deal with that. But picking one that is designed for advanced "nerdy" users and then ignoring those explicit warnings is just pure negligence.
Next thing you're gonna tell me you eat random shit found on the road and it's nerd bullshit to check if it's safe or not.