Opened 13 years ago

Closed 13 years ago

Last modified 10 years ago

#62 closed defect (worksforme)

Trojan in OSgeo Windows download package

Reported by: warmerdam Owned by: osgeo4w-dev@…
Priority: major Component: Installer
Version: Keywords:
Cc:

Description

Tried to download the OSGeo4w installer at this address: http://download.osgeo.org/osgeo4w/osgeo4w-setup.exe

I'm clear if SonicWall Gateway is installed on the connection here or on your end, but it refuses the download with this message: "This request is blocked by the SonicWALL Gateway Anti-Virus Service. Name: Delf.DFS_3 (Trojan)"

I'm looking forward to successfully downloading OSGeo.

Alon

Change History (6)

comment:1 by warmerdam, 13 years ago

I am seeking assistance to test the setup.exe (and also GDAL 1.6 package .exe's) for this virus. Timelyness is important in this regard!

comment:2 by dmorissette, 13 years ago

FYI we tried with BitDefender with updated virus defn and it didn't find anything in the osgeo4w-setup.exe file itself and any of the installed files (installed MapServer, Apache and GDAL).

comment:3 by jef, 13 years ago

BTW there also was another bug report about a virus in OSGeo4W, which didn't seem to be valid either: http://trac.osgeo.org/qgis/ticket/1560

I locally checked with McAfee, AntiVir and ClamScan and osgeo4w-setup.exe is also clean as far as I can tell. I also fed the URL into http://www.garyshood.com/virus/, which didn't find anything either (using f-prot, antivir, bitdefender, avg and clamscan).

comment:4 by warmerdam, 13 years ago

Resolution: worksforme
Status: newclosed

This appears to be a false alarm.

I'm going to investigate an antivirus solution for download.osgeo.org as time permits.

comment:5 by tmitchell, 10 years ago

Just to add to documentation in case others hit this. I am running on a Windows 7 machine with latest (trial ver) of Norton security. It quarantined QGIS automatically for me, but only after I tried to fetch plugins. It simply charged it with "suspicious behaviour" before locking up QGIS. You can manually override, but the default was to just do it...even without a warrant or a day in court.. imagine that. :)

Norton scanned osgeo4w and qgis for viruses and didn't have any issues, so it must have been the net access simultaneously hitting various repositories, I guess.

comment:6 by neteler, 10 years ago

Long time ago I have registered the winGRASS standalone package here: http://www.heise.de/software/

They run some 20+ virus scanners on each uploaded software and fetch version update automatically.

Perhaps OSGeo4W could be stored there as well?

Note: See TracTickets for help on using tickets.