speedtest-go icon indicating copy to clipboard operation
speedtest-go copied to clipboard
verified publisher icon librespeed

speedtest-backend.exe classified as threat

Open cascaabreu opened this issue 3 years ago • 3 comments

Description

On the lastest release 1.1.5, Windows Defender while fully updated classifies it as a threat. Somehting to do with the patches on "fix Windows build"? (https://github.com/librespeed/speedtest-go/commit/9cbc95a6db3b933f22b79cdc6cc9413b31af7ed0)

Server

Windows 10 Caddy webserver

Client

NA

Steps to reproduce

  • Download latest release
  • Bad stuff may happen

Expected behaviour

No threat?

Screenshots

image

cascaabreu avatar Jul 08 '22 23:07 cascaabreu

I think this is due to the fact that the binary is UPX compressed. You can try decompress it using upx -d to see if Windows is still complaining.

maddie avatar Jul 23 '22 12:07 maddie

Took some time...

Got the latest release from https://github.com/upx/upx and ran upx -d speedtest-backend.exe inside Windows Sandbox to get away from Windows Defender. Copied the resulting file to the server without warnings or getting it quarantined!

Great! What about future releases? Should I integrate this step (upx -d) into my updater script?

cascaabreu avatar Aug 11 '22 22:08 cascaabreu

Although now I'm unable to start the service with a ton of runtime errors.

cascaabreu avatar Aug 11 '22 22:08 cascaabreu