Let’s try to rephrase this in non-personalised language…
McAfee has investigated the FTP site at utexas.edu offering the MSI x86 v4.4.5 download for Windows & rated it as high-risk.
Many thanks for the information.
Added later:
Look at the LO metalink for the 4.4.5 MSI download. It is plain-text, and at the end you will find a great many FTP sites from which to download the same “LibreOffice_4.4.5_Win_x86.msi” file. I choose the very first & downloaded it + the ftp.utexas.edu file. These are the results that I got after that process:
:~$ md5sum Downloads/ftp.osuosl.org/LibreOffice_4.4.5_Win_x86.msi
fcea53a0d8217048c3f03939d9715ce2 Downloads/ftp.osuosl.org/LibreOffice_4.4.5_Win_x86.msi
:~$ md5sum Downloads/ftp.utexas.edu/LibreOffice_4.4.5_Win_x86.msi
fcea53a0d8217048c3f03939d9715ce2 Downloads/ftp.utexas.edu/LibreOffice_4.4.5_Win_x86.msi
The md5 from the metalink? fcea53a0d8217048c3f03939d9715ce2.
Nevertheless, I’ve sent an email to the Executive Director (Geschäftsführer) notifying them of this occurrence.
Update 2015-08-25:
Got a reply:
Hi Alex,
Alex Kemp wrote on 2015-08-25 at 06:24:
McAfee is reporting that the 4.4.5 MSI is “high-risk”:
thanks a lot for the note. Best to send this to is probably the website mailing list. On the website mailing list, everyone can participate in the discussion and support our efforts.
http://www.mcafee.com/threat-intelligence/site/default.aspx?url=http://ftp.utexas.edu/libreoffice/libreoffice/stable/4.4.5/win/x86/LibreOffice_4.4.5_Win_x86.msi
McAfee has your download site listed as "high risk."
I did the following analysis:
Thanks for that - I just (res)submitted the URL for review by McAffee, most likely a false alert.
If this helps then please tick the answer (
)
On Sept 17 I still got this message from McAfee.