Rockbox General > Rockbox General Discussion

Virus in Rockbox Utility 1.2.8 Installer

<< < (4/5) > >>

marthirial:
Am I to assume that saratoga speaks for the whole RockBox development team and therefore it is an official stand of RockBox to insult users instead of offering any explanation whatsoever?

We have posted 13 times in this thread and not once an "expert" or "developer" has posted any explanation whatsoever.

This is my last post.  I posted thinking this would help "noobs" that come excited to get this otherwise nice software but instead I got sidetrack bashing and childish insults.

And it is not like this software is for MRI machines that will save lives, relax dudes.

Llorean:  Yes, posted to Reddit and guess what, they had better answers than the actual developers here. 

My issue, one more time, is not if false positive happens or if AV are reliable.  I was just looking for an adult who could explain, simply, why an exe file is giving a false positive.

Something like this, you know: 

"Rockbox access resources in your computer that are similar to the behavior of malware.  We are committed to security and quality of our product and can assure no malicious programs are included in the installation package".  -  Att. RockBox developer.

See.  It even sound official and serious and helps bring credibility to the software.

AlexP:

--- Quote from: marthirial on October 01, 2010, 01:25:24 PM ---Am I to assume that saratoga speaks for the whole RockBox development team and therefore it is an official stand of RockBox to insult users instead of offering any explanation whatsoever?

--- End quote ---

No, for himself only, as are the views of everyone else.  I personally very much dislike the tone in this thread, and am sorry for that.

There isn't much of an explanation to give - Rockbox Utility downloads files and does some low level fiddling of hardware, but without access to the source code of the anti-virus software, we just don't know why they come up with this false positive.

soap:

--- Quote from: marthirial on October 01, 2010, 01:25:24 PM ---Am I to assume that saratoga speaks for the whole RockBox development team and therefore it is an official stand of RockBox to insult users instead of offering any explanation whatsoever?

--- End quote ---

saratoga speaks for saratoga.  

We're an anarcho-syndicalist commune.  We take it in turns to act as a sort of executive officer for the week.  But all the decision of that officer have to be ratified at a special biweekly meeting.  By a simple majority in the case of purely internal affairs, but by a two-thirds majority in the case of more...

EDIT:

But seriously.
Rockbox is a loose collective of people who have been entrusted "not to fuck up the code".
There is no leader, there is no spokesperson, there is no target market.

Just a bunch of people who enjoy working on a software project and give access, gratis, to their work.

Expecting some sort of "official" response from a non-corporate OSS project is missing the point.

Llorean:
How is someone supposed to tell you why it's a false positive? We didn't write the anti-virus software. We don't have access to which of their various heuristics this set off.

It could be the code to fiddle with the MBR on iPods.

It could be the mere fact that it downloads updated builds.

It could even just be the content of one string happening to match exactly the content of a similar string in a virus.

There's a million things it could be. "It's a false positive" is all the answer one *can* give you without simply making things up or lying about it. Would you rather a truthful answer, or a more reassuring falsehood or guess?

saratoga:

--- Quote from: marthirial on October 01, 2010, 01:25:24 PM ---We have posted 13 times in this thread and not once an "expert" or "developer" has posted any explanation whatsoever.

--- End quote ---

First reply to the thread:


--- Quote ---That report dates back to a file from before the current rbutil was released, so its probably just crappy antivirus software getting confused.

--- End quote ---

Reviewing the replies this was repeated to you several more times, so i think its unfair to say no one tried to help you understand.  I certainly did.  You just didn't like the answer so you ignored it.


--- Quote from: marthirial on October 01, 2010, 01:25:24 PM ---Something like this, you know: 

"Rockbox access resources in your computer that are similar to the behavior of malware.  We are committed to security and quality of our product and can assure no malicious programs are included in the installation package".  -  Att. RockBox developer.

--- End quote ---

Hey, I did just that!


--- Quote ---I like the description of the "threat":

"Downloads/requests other files from Internet."

Yes, I would think the tool for downloading rockbox from the internet probably does at some point download a file from the internet! 

Probably just some lazy AV vendors flagging a generic bit of code for downloading files as "virus like" without bothering to check if that bit of code is used in more then just malware.

--- End quote ---

Thats exactly what you just said you wanted to hear.  Did you not read those posts?  It really seems to me that you're faulting a lot of the wrong people here.

Navigation

[0] Message Index

[#] Next page

[*] Previous page