I know this isn’t the kind of news Linux fans were hoping to read on Christmas Day, but unfortunately, on a day meant for faith, kindness, and hope, others are choosing to act in exactly the opposite way.
Many of you probably remember the problems Arch faced just a few months ago due to massive DDoS attacks, which mainly affected the AUR. Sadly, just when it seemed those issues were behind, a new large-scale DDoS attack on Christmas Day once again made the distribution’s website effectively inaccessible.
I seem to recall hearing speculation that the person behind this had their AUR packages deleted because they were posting malware. I’ve only heard this second-hand so it could be complete bullshit, but it seems plausible given some of the fucking adult babies we have out in the world.
You don’t have to be an adult to post malware and hire DDoS botnets
AUR malware and DDoS attacks are not even correlated, for there to be any minimally credible speculation about causation.
Such “speculation” would only come from someone very unintelligent who would see two news items about X within a smallish time frame (weeks), then obtusely start drawing connection lines between them where there is probably* none.
* We don’t know who the malware spreaders or the DDoS attackers are. So we can’t be 100% certain about anything. But indications point to script kiddies being behind AUR malware attempts. And a more sophisticated entity behind the DDoS attacks, not just some kid or an adult with a grudge paying a botnet, like some are sillily suggesting. One should also not forget that there was always the conspiracy theory that DDoS protection service providers are behind most DDoS attacks (before AI crawlers accidentally took that crown).