New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 672984 link

Starred by 2 users
Status: WontFix
Owner:
zbutler@chromium.org
Last visit > 30 days ago
Closed: Jun 2017
Cc:
vakh@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: 2
Type: Bug



Sign in to add a comment

BFGMiner Win32 constantly flagged as unwanted/malware software

Reported by l...@dashjr.org, Dec 9 2016 
UserAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.75 Safari/537.36

Example URL:
http://luke.dashjr[.]org/programs/bitcoin/files/bfgminer/5.4.2/bfgminer-5.4.2-win32.zip

Steps to reproduce the problem:
1. Try to download official BFGMiner Win32
2. Chromium claims it is malware (sometimes)

What is the expected behavior?
Download successfully without non-standard warnings

What went wrong?
Google constantly has false-positives checking BFGMiner Win32 binaries for "unwanted software". These binaries are compiled from source by the author (myself), including the MinGW libraries/toolchain used to compile them, so there is no chance of malware infection.

Did this work before? N/A 

Chrome version: 55.0.2883.75  Channel: n/a
OS Version: 4.4.36-gentoo-r1
Flash Version: none

Botnets have historically bundled BFGMiner in their payload circa-2011/2012, but this was always against my wishes, and has since stopped (AFAIK; it's worthless to them now in any case).

Comment 1 by ellyjo...@chromium.org, Dec 9 2016

Components: -Internals>Network Services>Safebrowsing
Status: Untriaged (was: Unconfirmed)
To Services>SafeBrowsing for further triage.

Comment 2 by thakis@chromium.org, Dec 9 2016 

From irc, it sounds like http://luke.dashjr[.]org blocks google ips that try and download the zip (for analysis, i'm guessing). Luke says this has _decreased_ the probability their program is detected as malware.

Comment 3 by l...@dashjr.org, Dec 9 2016 

Disabled that blocking-google-ips for now, hoping for a more reliable solution

Comment 4 by nparker@chromium.org, Dec 16 2016

Labels: SafeBrowsing-Triaged
Owner: zbutler@chromium.org
Status: Assigned (was: Untriaged)

Comment 5 by nparker@chromium.org, Jun 30 2017

Status: WontFix (was: Assigned)
Hi -- Chrome uses Safe Browsing’s verdicts on the safety of downloads. To learn how to not get flagged with a warning in Chrome, please see https://support.google.com/webmasters/answer/3258249.  That also has a link to show the Security Issues Report for your domain within webmaster tools, and additional support suggestions

Comment 6 by l...@dashjr.org, Jun 30 2017 

This bug is for Safe Browsing's false positive. If it's reported in the wrong tracker, please advise where the proper place is. BFGMiner does not violate any of the guidelines in your link.

Comment 7 by nparker@chromium.org, Aug 3 2017 

The above link will take you to the Security Issues Report page which is what you want.  Yes, this is the wrong tracker.

Comment 8 by l...@dashjr.org, Aug 4 2017 

The Security Issues Report page has no way to resolve this problem or even contact a real human to get it addressed.

If Google is going to abuse this whole thing for censorship with no recourse to legitimate software being slandered, maybe it should be removed from Chromium?

Sign in to add a comment