You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@jmeter.apache.org by ma...@laposte.net on 2017/10/03 14:55:45 UTC
Download of JMeter zip blocked by anti-virus
Hi JMeter experts !
The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically blocked by my corporate anti-virus (McAfee Web Gate).
The zip would contain a virus, the following message is issued: "BehavesLike.Java.Suspicious-JAR.zv"
Before I reach out the McAfee WG administrator, I would like to know if something is wrong with the zip content ?
Same observation with JMeter 3.2 zip archive.
In advance, thank you very much for your help.
MD
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org
Re: Download of JMeter zip blocked by anti-virus
Posted by sebb <se...@gmail.com>.
On 3 October 2017 at 20:57, Philippe Mouawad
<p....@ubik-ingenierie.com> wrote:
> Hello,
> I compared the MD5 of official and mirrors and they have the same values.
> So for me it is the Antivirus is overzealous unless this mirror has been
> reported as dangerous for another reasons.
Agreed.
> I also notice that on the mirror , the link to check signature is broken:
>
> - http://mirrors.ircam.fr/pub/apache/jmeter/#sig
Huh?
It works for me
> Regards
>
> On Tue, Oct 3, 2017 at 9:47 PM, sebb <se...@gmail.com> wrote:
>
>> On 3 October 2017 at 20:16, Emilian Bold <em...@gmail.com> wrote:
>> >> So I think the problem is elsewhere than the mirrored files.
>> >
>> > I believe the antivirus wasn't looking at the content but the URL for
>> Java
>> > binaries. Known mirrors were "safe".
>>
>> Perhaps, but the error messages suggest the problem is in the content:
>>
>> > "BehavesLike.Java.Exploit.xm"
>> > "BehavesLike.Java.Suspicious-JAR.zv"
>>
>> Maybe the antivirus does not look at the content for files from known
>> mirrors.
>> Or perhaps it does check all the content but the error messages as
>> above are suppressed for known 'good' URLs.
>>
>> If the AV reports too many false positives that might be a work-round.
>>
>> In any case, the 3rd party mirrors don't appear to be at fault here.
>>
>> >
>> > --emi
>> >
>> > On Tue, Oct 3, 2017 at 10:11 PM, sebb <se...@gmail.com> wrote:
>> >
>> >> On 3 October 2017 at 17:40, <ma...@laposte.net> wrote:
>> >> > Ok, the point is closed.
>> >> >
>> >> >
>> >> > As recommended by the official Apache JMeter web site, I used an
>> >> official mirror site.
>> >> >
>> >> > I tried these 2 official French mirror sites:
>> >> > http://mirrors.ircam.fr/pub/apache/
>> >>
>> >> This URL works OK for me; I get the same contents as from
>> >>
>> >> http://www-eu.apache.org/dist/jmeter/binaries/
>> >>
>> >> > http://apache.mirrors.ovh.net/ftp.apache.org/dist/
>> >>
>> >> Likewise from here.
>> >>
>> >> > and systematically got a reject by McAfee Web Gate, respectively with
>> >> the messages
>> >> > "BehavesLike.Java.Exploit.xm"
>> >> > "BehavesLike.Java.Suspicious-JAR.zv"
>> >> >
>> >> >
>> >> > Only after the mirror sites I tried Apache's official sites
>> >> > http://www-eu.apache.org/dist/
>> >> > http://www-us.apache.org/dist/
>> >> > and these are fine.
>> >> >
>> >> > I conclude that either something is wrong on the mirror sites or
>> McAfee
>> >> WG is overzealous...
>> >>
>> >> Or there was a problem with the downloads from the mirrors.
>> >>
>> >> Did you check the hashes or sigs of the files downloaded from the
>> mirrors?
>> >>
>> >> As noted above, I don't get any issues with those mirrors.
>> >> I'm not using McAfee WG but the downloaded files are identical to the
>> >> ones downloaded from the ASF hosts.
>> >> And the sig for the zip file checks out OK.
>> >>
>> >> So I think the problem is elsewhere than the mirrored files.
>> >>
>> >> > MD
>> >> >
>> >> >
>> >> >
>> >> > ----- Mail original -----
>> >> > De: "sebb" <se...@gmail.com>
>> >> > À: "JMeter Users List" <us...@jmeter.apache.org>
>> >> > Envoyé: Mardi 3 Octobre 2017 17:32:14
>> >> > Objet: Re: Download of JMeter zip blocked by anti-virus
>> >> >
>> >> > On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
>> >> >>
>> >> >> Hi JMeter experts !
>> >> >>
>> >> >>
>> >> >> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically
>> >> blocked by my corporate anti-virus (McAfee Web Gate).
>> >> >>
>> >> >> The zip would contain a virus, the following message is issued:
>> >> "BehavesLike.Java.Suspicious-JAR.zv"
>> >> >>
>> >> >> Before I reach out the McAfee WG administrator, I would like to know
>> if
>> >> something is wrong with the zip content ?
>> >> >>
>> >> >> Same observation with JMeter 3.2 zip archive.
>> >> >>
>> >> >> In advance, thank you very much for your help.
>> >> >
>> >> > What URL did you get the zip files from?
>> >> >
>> >> > Did you check the signature as recommended here:
>> >> >
>> >> > http://www.apache.org/info/verification.html
>> >> >
>> >> > Or did you at least check the hash?
>> >> >
>> >> > The KEYS, sig and hashes must be downloaded from
>> >> >
>> >> > https://www.apache.org/dist/jmeter/KEYS
>> >> > and
>> >> > https://www.apache.org/dist/jmeter/binaries
>> >> >
>> >> >> MD
>> >> >>
>> >> >>
>> >> >> ------------------------------------------------------------
>> ---------
>> >> >> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> >> >> For additional commands, e-mail: user-help@jmeter.apache.org
>> >> >>
>> >> >
>> >> > ---------------------------------------------------------------------
>> >> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> >> > For additional commands, e-mail: user-help@jmeter.apache.org
>> >> >
>> >> >
>> >> >
>> >> > ---------------------------------------------------------------------
>> >> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> >> > For additional commands, e-mail: user-help@jmeter.apache.org
>> >> >
>> >>
>> >> ---------------------------------------------------------------------
>> >> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> >> For additional commands, e-mail: user-help@jmeter.apache.org
>> >>
>> >>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> For additional commands, e-mail: user-help@jmeter.apache.org
>>
>>
>
>
> --
> Cordialement.
> Philippe Mouawad.
> Ubik-Ingénierie
>
> UBIK LOAD PACK Web Site <http://www.ubikloadpack.com/>
>
> UBIK LOAD PACK on TWITTER <https://twitter.com/ubikloadpack>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org
Re: Download of JMeter zip blocked by anti-virus
Posted by Philippe Mouawad <p....@ubik-ingenierie.com>.
Hello,
I compared the MD5 of official and mirrors and they have the same values.
So for me it is the Antivirus is overzealous unless this mirror has been
reported as dangerous for another reasons.
I also notice that on the mirror , the link to check signature is broken:
- http://mirrors.ircam.fr/pub/apache/jmeter/#sig
Regards
On Tue, Oct 3, 2017 at 9:47 PM, sebb <se...@gmail.com> wrote:
> On 3 October 2017 at 20:16, Emilian Bold <em...@gmail.com> wrote:
> >> So I think the problem is elsewhere than the mirrored files.
> >
> > I believe the antivirus wasn't looking at the content but the URL for
> Java
> > binaries. Known mirrors were "safe".
>
> Perhaps, but the error messages suggest the problem is in the content:
>
> > "BehavesLike.Java.Exploit.xm"
> > "BehavesLike.Java.Suspicious-JAR.zv"
>
> Maybe the antivirus does not look at the content for files from known
> mirrors.
> Or perhaps it does check all the content but the error messages as
> above are suppressed for known 'good' URLs.
>
> If the AV reports too many false positives that might be a work-round.
>
> In any case, the 3rd party mirrors don't appear to be at fault here.
>
> >
> > --emi
> >
> > On Tue, Oct 3, 2017 at 10:11 PM, sebb <se...@gmail.com> wrote:
> >
> >> On 3 October 2017 at 17:40, <ma...@laposte.net> wrote:
> >> > Ok, the point is closed.
> >> >
> >> >
> >> > As recommended by the official Apache JMeter web site, I used an
> >> official mirror site.
> >> >
> >> > I tried these 2 official French mirror sites:
> >> > http://mirrors.ircam.fr/pub/apache/
> >>
> >> This URL works OK for me; I get the same contents as from
> >>
> >> http://www-eu.apache.org/dist/jmeter/binaries/
> >>
> >> > http://apache.mirrors.ovh.net/ftp.apache.org/dist/
> >>
> >> Likewise from here.
> >>
> >> > and systematically got a reject by McAfee Web Gate, respectively with
> >> the messages
> >> > "BehavesLike.Java.Exploit.xm"
> >> > "BehavesLike.Java.Suspicious-JAR.zv"
> >> >
> >> >
> >> > Only after the mirror sites I tried Apache's official sites
> >> > http://www-eu.apache.org/dist/
> >> > http://www-us.apache.org/dist/
> >> > and these are fine.
> >> >
> >> > I conclude that either something is wrong on the mirror sites or
> McAfee
> >> WG is overzealous...
> >>
> >> Or there was a problem with the downloads from the mirrors.
> >>
> >> Did you check the hashes or sigs of the files downloaded from the
> mirrors?
> >>
> >> As noted above, I don't get any issues with those mirrors.
> >> I'm not using McAfee WG but the downloaded files are identical to the
> >> ones downloaded from the ASF hosts.
> >> And the sig for the zip file checks out OK.
> >>
> >> So I think the problem is elsewhere than the mirrored files.
> >>
> >> > MD
> >> >
> >> >
> >> >
> >> > ----- Mail original -----
> >> > De: "sebb" <se...@gmail.com>
> >> > À: "JMeter Users List" <us...@jmeter.apache.org>
> >> > Envoyé: Mardi 3 Octobre 2017 17:32:14
> >> > Objet: Re: Download of JMeter zip blocked by anti-virus
> >> >
> >> > On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
> >> >>
> >> >> Hi JMeter experts !
> >> >>
> >> >>
> >> >> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically
> >> blocked by my corporate anti-virus (McAfee Web Gate).
> >> >>
> >> >> The zip would contain a virus, the following message is issued:
> >> "BehavesLike.Java.Suspicious-JAR.zv"
> >> >>
> >> >> Before I reach out the McAfee WG administrator, I would like to know
> if
> >> something is wrong with the zip content ?
> >> >>
> >> >> Same observation with JMeter 3.2 zip archive.
> >> >>
> >> >> In advance, thank you very much for your help.
> >> >
> >> > What URL did you get the zip files from?
> >> >
> >> > Did you check the signature as recommended here:
> >> >
> >> > http://www.apache.org/info/verification.html
> >> >
> >> > Or did you at least check the hash?
> >> >
> >> > The KEYS, sig and hashes must be downloaded from
> >> >
> >> > https://www.apache.org/dist/jmeter/KEYS
> >> > and
> >> > https://www.apache.org/dist/jmeter/binaries
> >> >
> >> >> MD
> >> >>
> >> >>
> >> >> ------------------------------------------------------------
> ---------
> >> >> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> >> >> For additional commands, e-mail: user-help@jmeter.apache.org
> >> >>
> >> >
> >> > ---------------------------------------------------------------------
> >> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> >> > For additional commands, e-mail: user-help@jmeter.apache.org
> >> >
> >> >
> >> >
> >> > ---------------------------------------------------------------------
> >> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> >> > For additional commands, e-mail: user-help@jmeter.apache.org
> >> >
> >>
> >> ---------------------------------------------------------------------
> >> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> >> For additional commands, e-mail: user-help@jmeter.apache.org
> >>
> >>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> For additional commands, e-mail: user-help@jmeter.apache.org
>
>
--
Cordialement.
Philippe Mouawad.
Ubik-Ingénierie
UBIK LOAD PACK Web Site <http://www.ubikloadpack.com/>
UBIK LOAD PACK on TWITTER <https://twitter.com/ubikloadpack>
Re: Download of JMeter zip blocked by anti-virus
Posted by sebb <se...@gmail.com>.
On 3 October 2017 at 20:16, Emilian Bold <em...@gmail.com> wrote:
>> So I think the problem is elsewhere than the mirrored files.
>
> I believe the antivirus wasn't looking at the content but the URL for Java
> binaries. Known mirrors were "safe".
Perhaps, but the error messages suggest the problem is in the content:
> "BehavesLike.Java.Exploit.xm"
> "BehavesLike.Java.Suspicious-JAR.zv"
Maybe the antivirus does not look at the content for files from known mirrors.
Or perhaps it does check all the content but the error messages as
above are suppressed for known 'good' URLs.
If the AV reports too many false positives that might be a work-round.
In any case, the 3rd party mirrors don't appear to be at fault here.
>
> --emi
>
> On Tue, Oct 3, 2017 at 10:11 PM, sebb <se...@gmail.com> wrote:
>
>> On 3 October 2017 at 17:40, <ma...@laposte.net> wrote:
>> > Ok, the point is closed.
>> >
>> >
>> > As recommended by the official Apache JMeter web site, I used an
>> official mirror site.
>> >
>> > I tried these 2 official French mirror sites:
>> > http://mirrors.ircam.fr/pub/apache/
>>
>> This URL works OK for me; I get the same contents as from
>>
>> http://www-eu.apache.org/dist/jmeter/binaries/
>>
>> > http://apache.mirrors.ovh.net/ftp.apache.org/dist/
>>
>> Likewise from here.
>>
>> > and systematically got a reject by McAfee Web Gate, respectively with
>> the messages
>> > "BehavesLike.Java.Exploit.xm"
>> > "BehavesLike.Java.Suspicious-JAR.zv"
>> >
>> >
>> > Only after the mirror sites I tried Apache's official sites
>> > http://www-eu.apache.org/dist/
>> > http://www-us.apache.org/dist/
>> > and these are fine.
>> >
>> > I conclude that either something is wrong on the mirror sites or McAfee
>> WG is overzealous...
>>
>> Or there was a problem with the downloads from the mirrors.
>>
>> Did you check the hashes or sigs of the files downloaded from the mirrors?
>>
>> As noted above, I don't get any issues with those mirrors.
>> I'm not using McAfee WG but the downloaded files are identical to the
>> ones downloaded from the ASF hosts.
>> And the sig for the zip file checks out OK.
>>
>> So I think the problem is elsewhere than the mirrored files.
>>
>> > MD
>> >
>> >
>> >
>> > ----- Mail original -----
>> > De: "sebb" <se...@gmail.com>
>> > À: "JMeter Users List" <us...@jmeter.apache.org>
>> > Envoyé: Mardi 3 Octobre 2017 17:32:14
>> > Objet: Re: Download of JMeter zip blocked by anti-virus
>> >
>> > On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
>> >>
>> >> Hi JMeter experts !
>> >>
>> >>
>> >> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically
>> blocked by my corporate anti-virus (McAfee Web Gate).
>> >>
>> >> The zip would contain a virus, the following message is issued:
>> "BehavesLike.Java.Suspicious-JAR.zv"
>> >>
>> >> Before I reach out the McAfee WG administrator, I would like to know if
>> something is wrong with the zip content ?
>> >>
>> >> Same observation with JMeter 3.2 zip archive.
>> >>
>> >> In advance, thank you very much for your help.
>> >
>> > What URL did you get the zip files from?
>> >
>> > Did you check the signature as recommended here:
>> >
>> > http://www.apache.org/info/verification.html
>> >
>> > Or did you at least check the hash?
>> >
>> > The KEYS, sig and hashes must be downloaded from
>> >
>> > https://www.apache.org/dist/jmeter/KEYS
>> > and
>> > https://www.apache.org/dist/jmeter/binaries
>> >
>> >> MD
>> >>
>> >>
>> >> ---------------------------------------------------------------------
>> >> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> >> For additional commands, e-mail: user-help@jmeter.apache.org
>> >>
>> >
>> > ---------------------------------------------------------------------
>> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> > For additional commands, e-mail: user-help@jmeter.apache.org
>> >
>> >
>> >
>> > ---------------------------------------------------------------------
>> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> > For additional commands, e-mail: user-help@jmeter.apache.org
>> >
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> For additional commands, e-mail: user-help@jmeter.apache.org
>>
>>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org
Re: Download of JMeter zip blocked by anti-virus
Posted by Emilian Bold <em...@gmail.com>.
> So I think the problem is elsewhere than the mirrored files.
I believe the antivirus wasn't looking at the content but the URL for Java
binaries. Known mirrors were "safe".
--emi
On Tue, Oct 3, 2017 at 10:11 PM, sebb <se...@gmail.com> wrote:
> On 3 October 2017 at 17:40, <ma...@laposte.net> wrote:
> > Ok, the point is closed.
> >
> >
> > As recommended by the official Apache JMeter web site, I used an
> official mirror site.
> >
> > I tried these 2 official French mirror sites:
> > http://mirrors.ircam.fr/pub/apache/
>
> This URL works OK for me; I get the same contents as from
>
> http://www-eu.apache.org/dist/jmeter/binaries/
>
> > http://apache.mirrors.ovh.net/ftp.apache.org/dist/
>
> Likewise from here.
>
> > and systematically got a reject by McAfee Web Gate, respectively with
> the messages
> > "BehavesLike.Java.Exploit.xm"
> > "BehavesLike.Java.Suspicious-JAR.zv"
> >
> >
> > Only after the mirror sites I tried Apache's official sites
> > http://www-eu.apache.org/dist/
> > http://www-us.apache.org/dist/
> > and these are fine.
> >
> > I conclude that either something is wrong on the mirror sites or McAfee
> WG is overzealous...
>
> Or there was a problem with the downloads from the mirrors.
>
> Did you check the hashes or sigs of the files downloaded from the mirrors?
>
> As noted above, I don't get any issues with those mirrors.
> I'm not using McAfee WG but the downloaded files are identical to the
> ones downloaded from the ASF hosts.
> And the sig for the zip file checks out OK.
>
> So I think the problem is elsewhere than the mirrored files.
>
> > MD
> >
> >
> >
> > ----- Mail original -----
> > De: "sebb" <se...@gmail.com>
> > À: "JMeter Users List" <us...@jmeter.apache.org>
> > Envoyé: Mardi 3 Octobre 2017 17:32:14
> > Objet: Re: Download of JMeter zip blocked by anti-virus
> >
> > On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
> >>
> >> Hi JMeter experts !
> >>
> >>
> >> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically
> blocked by my corporate anti-virus (McAfee Web Gate).
> >>
> >> The zip would contain a virus, the following message is issued:
> "BehavesLike.Java.Suspicious-JAR.zv"
> >>
> >> Before I reach out the McAfee WG administrator, I would like to know if
> something is wrong with the zip content ?
> >>
> >> Same observation with JMeter 3.2 zip archive.
> >>
> >> In advance, thank you very much for your help.
> >
> > What URL did you get the zip files from?
> >
> > Did you check the signature as recommended here:
> >
> > http://www.apache.org/info/verification.html
> >
> > Or did you at least check the hash?
> >
> > The KEYS, sig and hashes must be downloaded from
> >
> > https://www.apache.org/dist/jmeter/KEYS
> > and
> > https://www.apache.org/dist/jmeter/binaries
> >
> >> MD
> >>
> >>
> >> ---------------------------------------------------------------------
> >> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> >> For additional commands, e-mail: user-help@jmeter.apache.org
> >>
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> > For additional commands, e-mail: user-help@jmeter.apache.org
> >
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> > For additional commands, e-mail: user-help@jmeter.apache.org
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> For additional commands, e-mail: user-help@jmeter.apache.org
>
>
Re: Download of JMeter zip blocked by anti-virus
Posted by sebb <se...@gmail.com>.
On 3 October 2017 at 17:40, <ma...@laposte.net> wrote:
> Ok, the point is closed.
>
>
> As recommended by the official Apache JMeter web site, I used an official mirror site.
>
> I tried these 2 official French mirror sites:
> http://mirrors.ircam.fr/pub/apache/
This URL works OK for me; I get the same contents as from
http://www-eu.apache.org/dist/jmeter/binaries/
> http://apache.mirrors.ovh.net/ftp.apache.org/dist/
Likewise from here.
> and systematically got a reject by McAfee Web Gate, respectively with the messages
> "BehavesLike.Java.Exploit.xm"
> "BehavesLike.Java.Suspicious-JAR.zv"
>
>
> Only after the mirror sites I tried Apache's official sites
> http://www-eu.apache.org/dist/
> http://www-us.apache.org/dist/
> and these are fine.
>
> I conclude that either something is wrong on the mirror sites or McAfee WG is overzealous...
Or there was a problem with the downloads from the mirrors.
Did you check the hashes or sigs of the files downloaded from the mirrors?
As noted above, I don't get any issues with those mirrors.
I'm not using McAfee WG but the downloaded files are identical to the
ones downloaded from the ASF hosts.
And the sig for the zip file checks out OK.
So I think the problem is elsewhere than the mirrored files.
> MD
>
>
>
> ----- Mail original -----
> De: "sebb" <se...@gmail.com>
> À: "JMeter Users List" <us...@jmeter.apache.org>
> Envoyé: Mardi 3 Octobre 2017 17:32:14
> Objet: Re: Download of JMeter zip blocked by anti-virus
>
> On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
>>
>> Hi JMeter experts !
>>
>>
>> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically blocked by my corporate anti-virus (McAfee Web Gate).
>>
>> The zip would contain a virus, the following message is issued: "BehavesLike.Java.Suspicious-JAR.zv"
>>
>> Before I reach out the McAfee WG administrator, I would like to know if something is wrong with the zip content ?
>>
>> Same observation with JMeter 3.2 zip archive.
>>
>> In advance, thank you very much for your help.
>
> What URL did you get the zip files from?
>
> Did you check the signature as recommended here:
>
> http://www.apache.org/info/verification.html
>
> Or did you at least check the hash?
>
> The KEYS, sig and hashes must be downloaded from
>
> https://www.apache.org/dist/jmeter/KEYS
> and
> https://www.apache.org/dist/jmeter/binaries
>
>> MD
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
>> For additional commands, e-mail: user-help@jmeter.apache.org
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> For additional commands, e-mail: user-help@jmeter.apache.org
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> For additional commands, e-mail: user-help@jmeter.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org
Re: Download of JMeter zip blocked by anti-virus
Posted by ma...@laposte.net.
Ok, the point is closed.
As recommended by the official Apache JMeter web site, I used an official mirror site.
I tried these 2 official French mirror sites:
http://mirrors.ircam.fr/pub/apache/
http://apache.mirrors.ovh.net/ftp.apache.org/dist/
and systematically got a reject by McAfee Web Gate, respectively with the messages
"BehavesLike.Java.Exploit.xm"
"BehavesLike.Java.Suspicious-JAR.zv"
Only after the mirror sites I tried Apache's official sites
http://www-eu.apache.org/dist/
http://www-us.apache.org/dist/
and these are fine.
I conclude that either something is wrong on the mirror sites or McAfee WG is overzealous...
MD
----- Mail original -----
De: "sebb" <se...@gmail.com>
À: "JMeter Users List" <us...@jmeter.apache.org>
Envoyé: Mardi 3 Octobre 2017 17:32:14
Objet: Re: Download of JMeter zip blocked by anti-virus
On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
>
> Hi JMeter experts !
>
>
> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically blocked by my corporate anti-virus (McAfee Web Gate).
>
> The zip would contain a virus, the following message is issued: "BehavesLike.Java.Suspicious-JAR.zv"
>
> Before I reach out the McAfee WG administrator, I would like to know if something is wrong with the zip content ?
>
> Same observation with JMeter 3.2 zip archive.
>
> In advance, thank you very much for your help.
What URL did you get the zip files from?
Did you check the signature as recommended here:
http://www.apache.org/info/verification.html
Or did you at least check the hash?
The KEYS, sig and hashes must be downloaded from
https://www.apache.org/dist/jmeter/KEYS
and
https://www.apache.org/dist/jmeter/binaries
> MD
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> For additional commands, e-mail: user-help@jmeter.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org
Re: Download of JMeter zip blocked by anti-virus
Posted by sebb <se...@gmail.com>.
On 3 October 2017 at 15:55, <ma...@laposte.net> wrote:
>
> Hi JMeter experts !
>
>
> The download of JMeter 3.3 (apache-jmeter-3.3.zip) is systematically blocked by my corporate anti-virus (McAfee Web Gate).
>
> The zip would contain a virus, the following message is issued: "BehavesLike.Java.Suspicious-JAR.zv"
>
> Before I reach out the McAfee WG administrator, I would like to know if something is wrong with the zip content ?
>
> Same observation with JMeter 3.2 zip archive.
>
> In advance, thank you very much for your help.
What URL did you get the zip files from?
Did you check the signature as recommended here:
http://www.apache.org/info/verification.html
Or did you at least check the hash?
The KEYS, sig and hashes must be downloaded from
https://www.apache.org/dist/jmeter/KEYS
and
https://www.apache.org/dist/jmeter/binaries
> MD
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
> For additional commands, e-mail: user-help@jmeter.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@jmeter.apache.org
For additional commands, e-mail: user-help@jmeter.apache.org