fedoraproject.org on Malware Domain List - security [ARCHIVED] - Fedora Mailing-Lists

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

fedoraproject.org on Malware Domain List

[Secure Coding] master: Fix typos...

Adding category to wiki pages

Manuel Faux

Sunday, 17 November 2013 Sun, 17 Nov '13

8:50 a.m.

I just recognized the entry "||fedoraproject.org^" on the AdBlockPlus/Easylist Malware domain list [0]. Is there any explanation for this, so far? I recognized it, since no external resources were loaded for any Fedora Project related website (no JS, CSS, images, etc.). [0] https://easylist-downloads.adblockplus.org/malwaredomains_full.txt Manuel

Reply

Show replies by date

Rohan Sheth

Sunday, 17 November Sun, 17 Nov

10:24 a.m.

On Sun, Nov 17, 2013, at 06:50 AM, Manuel Faux wrote:

I just recognized the entry "||fedoraproject.org^" on the AdBlockPlus/Easylist Malware domain list [0]. Is there any explanation for this, so far?

It is also listed on the OpenDNS Umbrella security labs malware list. So anyone using OpenDNS and browsing to a variety of Fedora websites receives a block page. I've opened a ticket with OpenDNS asking why this has happened. -Rohan

Reply

Kevin Fenzi

10:30 a.m.

On Sun, 17 Nov 2013 08:24:43 -0800 Rohan Sheth <rohan(a)rs3net.net> wrote:

On Sun, Nov 17, 2013, at 06:50 AM, Manuel Faux wrote: > I just recognized the entry "||fedoraproject.org^" on the > AdBlockPlus/Easylist Malware domain list [0]. Is there any > explanation for this, so far? It is also listed on the OpenDNS Umbrella security labs malware list. So anyone using OpenDNS and browsing to a variety of Fedora websites receives a block page. I've opened a ticket with OpenDNS asking why this has happened.

As far I can tell, this was due to a 'website mailware' scanner site detecting (falsely) that there was some malware string in the Fedora 19 desktop iso. We have contacted that site yesterday and this morning (as of about 4 hours ago) have let us know that they have cleared the false positive/entry from their database. However, it seems many malware lists out there have not yet removed the entry (some of them may only update daily). Hopefully things will be cleared out soon. This shows the fragility of using these 3rd party malware scanning services... they seem to feed into a bunch of lists and a false positive can linger for days. ;( kevin

Reply

3810

days inactive

3810

days old

security@lists.fedoraproject.org

Manage subscription

2 comments

3 participants

tags (0)

participants (3)

Kevin Fenzi
Manuel Faux
Rohan Sheth