You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2024-01-07 04:32:15
- pcalvert
- Member
- Registered: 2017-05-15
- Posts: 195
Potentially compromised repository
Yesterday I attempted to upgrade my Daedalus-based Refracta system, but the connections were blocked by my router for security reasons.
# aptitude upgrade
Resolving dependencies...
The following NEW packages will be installed:
linux-headers-6.1.0-17-amd64{a} linux-headers-6.1.0-17-common{a}
linux-image-6.1.0-17-amd64{a}
The following packages will be upgraded:
bluez bluez-obexd curl exim4 exim4-base exim4-config exim4-daemon-light
libbluetooth3 libcurl3-gnutls libcurl4 libgstreamer-plugins-bad1.0-0
libssh-gcrypt-4 linux-compiler-gcc-12-x86 linux-headers-amd64
linux-image-amd64 linux-kbuild-6.1 linux-libc-dev openssh-client
The following packages are RECOMMENDED but will NOT be installed:
apparmor bsd-mailx mailutils
18 packages upgraded, 3 newly installed, 0 to remove and 0 not upgraded.
Need to get 90.2 MB of archives. After unpacking 469 MB will be used.
Do you want to continue? [Y/n/?] y
Ign http://deb.devuan.org/merged daedalus-security/main amd64 bluez amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 openssh-client amd64 1:9.2p1-2+deb12u2
Ign http://deb.devuan.org/merged daedalus-security/main amd64 bluez-obexd amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 curl amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libcurl4 amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 bluez amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 openssh-client amd64 1:9.2p1-2+deb12u2
Ign http://deb.devuan.org/merged daedalus-security/main amd64 bluez-obexd amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 curl amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libcurl4 amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-config all 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4 all 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-base amd64 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-daemon-light amd64 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libbluetooth3 amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libcurl3-gnutls amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libgstreamer-plugins-bad1.0-0 amd64 1.22.0-4+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libssh-gcrypt-4 amd64 0.10.6-0+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-compiler-gcc-12-x86 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-common all 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-kbuild-6.1 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-6.1.0-17-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-libc-dev amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 bluez amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 openssh-client amd64 1:9.2p1-2+deb12u2
Ign http://deb.devuan.org/merged daedalus-security/main amd64 bluez-obexd amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 curl amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libcurl4 amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-config all 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4 all 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-base amd64 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-daemon-light amd64 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libbluetooth3 amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libcurl3-gnutls amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libgstreamer-plugins-bad1.0-0 amd64 1.22.0-4+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libssh-gcrypt-4 amd64 0.10.6-0+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-compiler-gcc-12-x86 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-common all 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-kbuild-6.1 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-6.1.0-17-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-libc-dev amd64 6.1.69-1
Err http://deb.devuan.org/merged daedalus-security/main amd64 bluez amd64 5.66-1+deb12u1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 openssh-client amd64 1:9.2p1-2+deb12u2
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 bluez-obexd amd64 5.66-1+deb12u1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 curl amd64 7.88.1-10+deb12u5
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 libcurl4 amd64 7.88.1-10+deb12u5
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-config all 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4 all 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-base amd64 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 exim4-daemon-light amd64 4.96-15+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libbluetooth3 amd64 5.66-1+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libcurl3-gnutls amd64 7.88.1-10+deb12u5
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libgstreamer-plugins-bad1.0-0 amd64 1.22.0-4+deb12u4
Ign http://deb.devuan.org/merged daedalus-security/main amd64 libssh-gcrypt-4 amd64 0.10.6-0+deb12u1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-compiler-gcc-12-x86 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-common all 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-kbuild-6.1 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-6.1.0-17-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-amd64 amd64 6.1.69-1
Ign http://deb.devuan.org/merged daedalus-security/main amd64 linux-libc-dev amd64 6.1.69-1
Err http://deb.devuan.org/merged daedalus-security/main amd64 exim4-config all 4.96-15+deb12u4
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 exim4 all 4.96-15+deb12u4
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 exim4-base amd64 4.96-15+deb12u4
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 exim4-daemon-light amd64 4.96-15+deb12u4
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 libbluetooth3 amd64 5.66-1+deb12u1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 libcurl3-gnutls amd64 7.88.1-10+deb12u5
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 libgstreamer-plugins-bad1.0-0 amd64 1.22.0-4+deb12u4
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 libssh-gcrypt-4 amd64 0.10.6-0+deb12u1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-compiler-gcc-12-x86 amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-common all 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-kbuild-6.1 amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-6.1.0-17-amd64 amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-headers-amd64 amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-6.1.0-17-amd64 amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-image-amd64 amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
Err http://deb.devuan.org/merged daedalus-security/main amd64 linux-libc-dev amd64 6.1.69-1
Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
0% [Working]E: Failed to fetch https://blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks/: Could not resolve 'blocked.eero.com?cat=advanced_security&reason=52&url=repo.jing.rocks'
E: Unable to fetch some packages; try '-o APT::Get::Fix-Missing=true' to continue with missing packagesThe potentially compromised repository is repo.jing.rocks. According to the app for my router, the reason for the block is "Phishing & Deception".
Offline
#2 2024-01-07 14:40:56
- Nietz
- Member
- Registered: 2023-12-16
- Posts: 13
Re: Potentially compromised repository
Hello pcalvert,
Do you have access to your router's settings? I see you are using an eero router, correct?
Can you please inspect the list of blocked websites according to the manufacturer's help page here:
https://support.eero.com/hc/en-us/artic … w-Websites
Is your router configured for geographical restrictions? A download from a server overseas might be blocked for that reason. Do you have a custom DNS provider configured?
Finally, what happens when you visit repo.jing.rocks in an Internet browser?
Offline
#3 2024-01-07 22:11:15
- pcalvert
- Member
- Registered: 2017-05-15
- Posts: 195
Re: Potentially compromised repository
Hi Nietz,
The website repo.jing.rocks is being blocked for "Phishing & Deception". That is the only reason it is being blocked. I have not configured the manual blocking of any websites via the router. If I wanted to block a website, I would use another means, like dnsmasq.
If I try to visit repo.jing.rocks using Firefox, I am presented with this message:
Whoopsie
Your device is not allowed to access this site.We hate to be the bearers of bad news, but this site has been blocked. If you believe that this site was categorized incorrectly, you can report it as inaccurate.
When I last tried to access that URL (right after the aptitude upgrade failure), the block message was different, and indicated that the site was not safe to visit.
I also tried to visit jing.rocks and status.jing.rocks. Those websites are not being blocked.
Offline
#4 2024-01-08 02:19:28
- stargate-sg1-cheyenne-mtn
- Member
- Registered: 2023-11-27
- Posts: 73
Re: Potentially compromised repository
all working ok now(checked w/ dillo, firefox, links, and lynx)
Be Excellent to each other and Party On!
ttps://www.youtube.com/watch?v=rph_1DODXDU
ttps://en.wikipedia.org/wiki/Bill_%26_Ted%27s_Excellent_Adventure
Do unto others as you would have them do instantaneously back to you
Offline
#5 2024-01-08 16:02:03
- Nietz
- Member
- Registered: 2023-12-16
- Posts: 13
Re: Potentially compromised repository
Hello @pcalvert
Re-examinging your posts reveal something...
the terminal output shows the repo as "repo.jing.rocks" as http,
but the two links you posted as visiting are both links as https.
Presumably, your browser is configured to redirect to the secure page, but the http mirror is being blocked by default eero policy. If you have auto updates enabled, the company might be restricting your connections without your input, and you should be able to disable it from within the eero's settings.
At the risk of going offtopic, you might consider a router with custom firmware (OpenWRT is my favorite) for more granular control.
Additionally, if you can provide me with your DNS servers, I can examine whether they might be blocking this mirror.
Regards,
nietz
Offline
Pages: 1
