Seafile ccnet.exe detected as Virus by AVG

[Siau Kua Pok]

Hi,

  Has anyone of you encountered this issue recently? Seafile client ccnet.exe on Windows is detected as a Virus by AVG. It didn't happen before so it is probably because of the latest virus definition.

I have ignored the threat but I am not sure if it's a false positive or something that we should be concerned with.

Any advise? Thanks.

Regards,

Colin

[Ron Scott-Adams]

Here’s some conjecture for you, based partly on an understanding of Seafile and more on previous working knowledge of AVG’s trends with pattern updates and heuristic detection.

CCNET is a fairly intrusive and unique sort of network service, from AVG’s perspective, as you can see from the diagram on the components overview wiki article (https://github.com/haiwen/seafile/wiki/Seafile-server-components-overview), CCNET calls to the listener on the Seafile server and receives from the same. So, from AVG’s perspective, what you have is an open call daemon chattering about something opaque to AVG’s detection methods.

As I said though, this is conjecture, so seek out some confirmation. Ask the vendor (hopefully you have a current support agreement), and test against a freshly obtained Seafile client connecting to a different Seafile server (say, the seacloud.cc service). Ensure the origin is correct and no DNS subversion has taken place causing you to obtain rogue clients.

That’s about as paranoid of a checkup as I can think of as reasonable.

--
You received this message because you are subscribed to the Google Groups "seafile" group.
To unsubscribe from this group and stop receiving emails from it, send an email to seafile+u...@googlegroups.com.
To post to this group, send email to sea...@googlegroups.com.
Visit this group at http://groups.google.com/group/seafile.
For more options, visit https://groups.google.com/d/optout.

[Siau Kua Pok]

Hi Ron,

 Thanks. Will try that.