Virus in Firefox Trunk Nightlies?
Peter Lairo
(avast!) is claiming the file contains a virus! :-\
Is it safe to ignore that warning, or has Mozilla.org gone rogue?
--
Regards,
Peter Lairo
The browser you can trust: www.GetFirefox.com
Reclaim Your Inbox: www.GetThunderbird.com
Dangers of Islam: http://www.jihadwatch.org/islam101/
Israel (Myths & Facts): http://www.JewishVirtualLibrary.org/
Church of the Flying Spaghetti Monster: http://www.venganza.org/
Peter Lairo
> I am trying to download Firefox nightly trunk build and my virus scanner
> (avast!) is claiming the file contains a virus! :-\
Name: Win32:Trojan-gen {Other}
Peter Lairo
> (avast!) is claiming the file contains a virus! :-\
>
> http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-mozilla-central/firefox-3.2a1pre.en-US.win32.installer.exe
>
>
> Is it safe to ignore that warning, or has Mozilla.org gone rogue?
If I bypass the virus warning, I still can't install: "Error executing
program". :-(
Mike Beltzner
that, I'm guessing you got a garbled binary from a mirror which
tripped a false positive.
cheers,
mike
> _______________________________________________
> dev-apps-firefox mailing list
> dev-apps...@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-apps-firefox
Johnathan Nightingale
> If I bypass the virus warning, I still can't install: "Error
> executing program". :-(
I don't have that problem downloading it here, so there may be some
mirror corruption or something going on. Having said that:
http://www.virustotal.com/analisis/9f0797cd4a413bd72da0dd3d6c817aa0
VirusTotal confirms that Avast and GData (and only those two) see
W32:Trojan-gen in it. That could be because they use the same
signatures (eSafe just says "suspicious") or because they're
particularly ahead of the curve, but no other scanners corroborate it.
Most importantly, though, whether it's a real concern or not, we're
tracking it in this bug: https://bugzilla.mozilla.org/show_bug.cgi?id=469988
Let's take the conversation there to avoid fragmenting it?
Cheers,
Johnathan
> _______________________________________________
> dev-apps-firefox mailing list
> dev-apps...@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-apps-firefox
---
Johnathan Nightingale
Human Shield
joh...@mozilla.com
Peter Lairo
Benjamin Smedberg
> Hey Peter, Johnathan is looking into this right now, but based on that,
> I'm guessing you got a garbled binary from a mirror which tripped a
> false positive.
>
> cheers,
> mike
>
> On 17-Dec-08, at 11:58 AM, Peter Lairo wrote:
>
>> On 17.12.2008 17:55, Peter Lairo wrote:
>>> I am trying to download Firefox nightly trunk build and my virus scanner
>>> (avast!) is claiming the file contains a virus! :-\
>>>
>>> http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-mozilla-central/firefox-3.2a1pre.en-US.win32.installer.exe
FWIW, ftp.mozilla.org is hosted entirely by Mozilla nowadays: it's only
releases.mozilla.org that is mirrored externally.
--BDS
Justin Wood (Callek)
> I tried *two* FTP directories:
>
> http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-mozilla-central/firefox-3.2a1pre.en-US.win32.installer.exe
>
>
> and
>
> http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/2008-12-05-16-mozilla-central/
Unless I am mistaken, latest-mozilla-* is usually a symlink for the file
contained in the dated dir. And as new builds are uploaded the symlink
is also updated.
--
~Justin Wood (Callek)
Robert Kaiser
> Unless I am mistaken, latest-mozilla-* is usually a symlink for the file
> contained in the dated dir. And as new builds are uploaded the symlink
> is also updated.
It's not a symlink, it's an actual copy of the file(s).
Robert Kaiser
Mike Beltzner
flagged?
cheers,
mike