Opened 13 years ago

Closed 13 years ago

Last modified 10 years ago

#62 closed defect (worksforme)

Trojan in OSgeo Windows download package

Reported by: warmerdam Owned by: osgeo4w-dev@…
Priority: major Component: Installer
Version: Keywords:
Cc:

Description

Tried to download the OSGeo4w installer at this address: http://download.osgeo.org/osgeo4w/osgeo4w-setup.exe

I'm clear if SonicWall? Gateway is installed on the connection here or on your end, but it refuses the download with this message: "This request is blocked by the SonicWALL Gateway Anti-Virus Service. Name: Delf.DFS_3 (Trojan)"

I'm looking forward to successfully downloading OSGeo.

Alon

Change History (6)

comment:1 Changed 13 years ago by warmerdam

I am seeking assistance to test the setup.exe (and also GDAL 1.6 package .exe's) for this virus. Timelyness is important in this regard!

comment:2 Changed 13 years ago by dmorissette

FYI we tried with BitDefender? with updated virus defn and it didn't find anything in the osgeo4w-setup.exe file itself and any of the installed files (installed MapServer, Apache and GDAL).

comment:3 Changed 13 years ago by jef

BTW there also was another bug report about a virus in OSGeo4W, which didn't seem to be valid either: http://trac.osgeo.org/qgis/ticket/1560

I locally checked with McAfee?, AntiVir? and ClamScan? and osgeo4w-setup.exe is also clean as far as I can tell. I also fed the URL into http://www.garyshood.com/virus/, which didn't find anything either (using f-prot, antivir, bitdefender, avg and clamscan).

comment:4 Changed 13 years ago by warmerdam

Resolution: worksforme
Status: newclosed

This appears to be a false alarm.

I'm going to investigate an antivirus solution for download.osgeo.org as time permits.

comment:5 Changed 10 years ago by tmitchell

Just to add to documentation in case others hit this. I am running on a Windows 7 machine with latest (trial ver) of Norton security. It quarantined QGIS automatically for me, but only after I tried to fetch plugins. It simply charged it with "suspicious behaviour" before locking up QGIS. You can manually override, but the default was to just do it...even without a warrant or a day in court.. imagine that. :)

Norton scanned osgeo4w and qgis for viruses and didn't have any issues, so it must have been the net access simultaneously hitting various repositories, I guess.

comment:6 Changed 10 years ago by neteler

Long time ago I have registered the winGRASS standalone package here: http://www.heise.de/software/

They run some 20+ virus scanners on each uploaded software and fetch version update automatically.

Perhaps OSGeo4W could be stored there as well?

Note: See TracTickets for help on using tickets.