January 13, 2021
On Tuesday, 12 January 2021 at 13:40:49 UTC, Jacob Carlborg wrote:
> On Sunday, 10 January 2021 at 10:59:57 UTC, Ivan Kazmenko wrote:
>
>> What's the next thing to do here?  Obviously, I'd like the release to not contain threats (or false alarms), so that we can feel safe about installing dmd on servers and such.
>
> Perhaps you can check if rdmd is compiled -m32mscof or -m32. If it's compiled with -m32 it will produce OMF object files and link with the DMC runtime. Perhaps compiling for COFF and linking with the MS runtime makes a difference?

Definitely looks like -m32, both 2.094.2 and 2.095.0 versions.

I don't see a tool to do an exact check, but hello-worlds compiled with -m32mscoff have "This program cannot be run in DOS mode." near the start of executable, whereas -m32 produces a "Requires Win32" there.

Anyway, this didn't change between 2.094.2 and 2.095.0.

Ivan Kazmenko.

January 14, 2021
On Sunday, 10 January 2021 at 10:59:57 UTC, Ivan Kazmenko wrote:
> Hi,
>
> The site virustotal.com doesn't like the new 2.095.0 release for Windows: three engines find a threat in "rdmd.exe" file in the 7z archive.  One engine finds BScope.TrojanRansom.Encoder in it, and two others find Hacktool.Win32.Krasnoglaz.Gena.  The latter is new: detected in 2.095.0-rc1 version, but not in 2.094.2 release.
>  One engine detects a threat in some other executables from the archive as well.
>
> Note: when given the whole 7-zip archive, some of the engines time out, so it's best to upload and check the ".exe" files separately.
>
> What's the next thing to do here?  Obviously, I'd like the release to not contain threats (or false alarms), so that we can feel safe about installing dmd on servers and such.
>
> Ivan Kazmenko.

False positive or not, anyone knows if/how we scan for viruses when doing releases? 🤔

It's highly unlikely that an actual virus sneaked in, but it gives a "bad" impression...

This has happened at my previous company before when writing software that copied files between computers. I'm not surprised tho if some part of rdmd looks suspicious to an anti-virus 😏
January 16, 2021
On Thursday, 14 January 2021 at 06:47:15 UTC, Imperatorn wrote:
>
> False positive or not, anyone knows if/how we scan for viruses when doing releases? 🤔
>
> It's highly unlikely that an actual virus sneaked in, but it gives a "bad" impression...
>
> This has happened at my previous company before when writing software that copied files between computers. I'm not surprised tho if some part of rdmd looks suspicious to an anti-virus 😏

That can happen to other dev tools. For me, one antivirus flagged a debugger as a hacktool dot something. Some sites of dev tools warn the users that some antiviruses can create false positives, most likely due to debuggers having similarities to certain malware programs.
1 2
Next ›   Last »