* Elazar Leibovich: > Hi, > > I'm the author of the goproxy project. > > Recently I received a complaint from a user about goproxy being categorized > as a virus. > > https://www.reasoncoresecurity.com/sysnetwk.exe-fbcc41dafc7bd8cf9b373e0d6b74808b11a9ba3c.aspx > > From a cursory look, it looks like a virus which is using the > insecure-public goproxy certificate to sign itself.
This looks more like something went wrong with signature extraction from the executable. Maybe this service picks the first or last X.509 certificate it finds in the binary. Do you have a copy of the binary? > Or maybe it's a virus which is using the goproxy library? This is possible. Based on the file name, a false positive seems unlikely. > I recall hearing about a virus written in golang, but cannot find any > details. One AV vendor called it Trojan.Encriyoko, in case that helps. -- You received this message because you are subscribed to the Google Groups "golang-nuts" group. To unsubscribe from this group and stop receiving emails from it, send an email to golang-nuts+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
