Hi, the counterpart of this bug, which is assigned to debian-cd is https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=966608 "debian-cd: Daily iso flagged as virus/malware by Firefox" where the maintainer of the ISOs affirms "It *is* a false positive - we are happy that we do not have a problem with malware." and reports "We've had a slew of similar complaints this week, all apparently triggered by Google's "safe browsing" service. We're trying to get it fixed at their end."
> This appears to be a bug with Firefox and possibly > something about the Debian ISOs for some reason, If the warning would only tell something about the location of the suspicious bytes inside the ISOs. Or if the warning would be repeatable. (Thanks for the screenshot) I'll try with your ISO URL tomorrow in the hope to get the warning again and to find some button ... A Debian ISO consists of hard to fake .deb packages embedded in a jelly of ISO 9660 metadata. This jelly further embraces data files (some executable like vmlinuz) and a Master Boot Record with x86 machine code, which stems from the SYSLINUX project. The jelly is generated by my program xorriso. So i wonder whether its about a particular Debian package, a file of other kind, the Master Boot Record, or about some metadata. Have a nice day :) Thomas
