14 Jun 2013

Multimedia Repository Poses Security Threat to Debian Aficionados

The domain name used by the unofficial Debian Multimedia repository has changed hands and now poses a security threat to Linux users who enabled it in the past.

According to the Debian blog, the debian-multimedia.org domain is not being used by the maintainers anymore, as it expired and was registered by an unknown party.

“This means that the repository is no longer safe to use, and you should remove the related entries from your sources.list file,” reads the announcement.

Repositories are storage locations from which software packages may be retrieved and installed on a computer. Having an unauthorized repository added to your operating system could lead to users installing backdoored or harmful software.

To stay safe, the Debian project recommends that users check their systems by running

grep debian-multimedia.org /etc/apt/sources.list /etc/apt/sources.list.d/*. If the debian-multimedia.org domain shows up in the output, it should be removed immediately.