(Ubuntu) honks: The Treviño Story
http://soijabanaani.net/tmp/the_trevino_story:
The story so far:
Some guy decided to make a huge list of random Ubuntu repositories around the web, and he recommends people to dump it to their sources.list without thinking:
http://3v1n0.tuxfamily.org/blog/lista-repository-sourceslist-ottimizzata-per-ubuntu-kubuntu-linux/
Hundreds of people (most of them Italian) have obeyed him without realizing that the maintainer of ANY of those repositories can do ANYTHING she wants to their systems: destroying or stealing files, stealing passwords, criminal activity through the computers…
Oh, and my repository is listed as well.
I made “new versions” of the packages containing the default Ubuntu and Kubuntu wallpapers, where the image is replaced with the following friendly warning:
http://soijabanaani.net/tmp/untrusted_repositories
(…)