<HTML><HEAD>
<STYLE id=eMClientCss>blockquote.cite { margin-left: 5px; margin-right: 0px; padding-left: 10px; padding-right:0px; border-left: 1px solid #cccccc }
blockquote.cite2 {margin-left: 5px; margin-right: 0px; padding-left: 10px; padding-right:0px; border-left: 1px solid #cccccc; margin-top: 3px; padding-top: 0px; }
.plain pre, .plain tt { font-family: monospace; font-size: 100%; font-weight: normal; font-style: normal; white-space: pre-wrap; }
a img { border: 0px; }body {font-family: Tahoma;font-size: 12pt;}
.plain pre, .plain tt {font-family: Tahoma;font-size: 12pt;}
</STYLE>
<STYLE></STYLE>
</HEAD>
<BODY scroll=auto class>
<DIV>Correct and definitive !</DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV>------ Original Message ------</DIV>
<DIV>From: "Debra Wilson" <<A href="mailto:dwilson223@cox.net">dwilson223@cox.net</A>></DIV>
<DIV>To: "Dan Smith" <<A href="mailto:dsmith@danplanet.com">dsmith@danplanet.com</A>>; "Discussion of CHIRP" <<A href="mailto:chirp_users@intrepid.danplanet.com">chirp_users@intrepid.danplanet.com</A>></DIV>
<DIV>Sent: 10/15/2015 5:54:12 PM</DIV>
<DIV>Subject: Re: [chirp_users] Panda reported a virus in Oct 9 and Oct 13 daily builds.</DIV>
<DIV> </DIV>
<DIV id=x7148115a673d4b78878104f60794785f>
<BLOCKQUOTE class=cite2 cite=91662961-7238-4C8B-AE83-D8A44B41E96F@cox.net type="cite">
<DIV>Like.<BR><BR>Sent from mom's <SPAN style="FONT-SIZE: 13pt">iPad</SPAN></DIV>
<DIV><BR>On Oct 15, 2015, at 9:57 AM, Dan Smith via chirp_users <<A href="mailto:chirp_users@intrepid.danplanet.com">chirp_users@intrepid.danplanet.com</A>> wrote:<BR><BR></DIV>
<DIV>
<BLOCKQUOTE class=cite type="cite"><SPAN>Every few months we get a message like this to the mailing list. It's</SPAN><BR></BLOCKQUOTE>
<BLOCKQUOTE class=cite type="cite"><SPAN>usually one of the smaller antivirus packages reporting a virus. So</SPAN><BR></BLOCKQUOTE>
<BLOCKQUOTE class=cite type="cite"><SPAN>far they have all been false positives. My guess is there are actual</SPAN><BR></BLOCKQUOTE>
<BLOCKQUOTE class=cite type="cite"><SPAN>viruses out there using Python libraries, and not realizing they're</SPAN><BR></BLOCKQUOTE>
<BLOCKQUOTE class=cite type="cite"><SPAN>looking at popular open source software, the antivirus company flags</SPAN><BR></BLOCKQUOTE>
<BLOCKQUOTE class=cite type="cite"><SPAN>it.</SPAN><BR></BLOCKQUOTE><SPAN></SPAN><BR><SPAN>Yep, and just to further explain how these builds are created for those</SPAN><BR><SPAN>that are interested (and/or are wondering how we attempt to protect our</SPAN><BR><SPAN>users who trust our builds):</SPAN><BR><SPAN></SPAN><BR><SPAN>Every night, when a change is pending, the build server literally builds</SPAN><BR><SPAN>an entirely new Windows 7 virtual machine with known-good copies of all</SPAN><BR><SPAN>of our base dependencies. It then creates the new chirp build on that</SPAN><BR><SPAN>machine and uploads it to the chirp website. When it's done, it</SPAN><BR><SPAN>*destroys* the temporary machine it created. The next day, the whole</SPAN><BR><SPAN>thing starts from scratch.</SPAN><BR><SPAN></SPAN><BR><SPAN>The process takes about 10 minutes total and occurs on an almost</SPAN><BR><SPAN>completely sealed private network. There's really no opportunity for</SPAN><BR><SPAN>anything to get on the build machine and disrupt the process, and it</SPAN><BR><SPAN>certainly wouldn't change day-to-day, build-to-build.</SPAN><BR><SPAN></SPAN><BR><SPAN>--Dan</SPAN><BR><SPAN>_______________________________________________</SPAN><BR><SPAN>chirp_users mailing list</SPAN><BR><SPAN><A href="mailto:chirp_users@intrepid.danplanet.com">chirp_users@intrepid.danplanet.com</A></SPAN><BR><SPAN><A href="http://intrepid.danplanet.com/mailman/listinfo/chirp_users">http://intrepid.danplanet.com/mailman/listinfo/chirp_users</A></SPAN><BR><SPAN>To unsubscribe, send an email to <A href="mailto:chirp_users-unsubscribe@intrepid.danplanet.com">chirp_users-unsubscribe@intrepid.danplanet.com</A></SPAN><BR></DIV></BLOCKQUOTE></DIV></BODY></HTML>