Package Details: upm 1.14-2

Git Clone URL: https://aur.archlinux.org/upm.git (read-only)
Package Base: upm
Description: Universal Password Manager
Upstream URL: http://upm.sourceforge.net/
Licenses: GPL2
Submitter: filand
Maintainer: filand
Last Packager: filand
Votes: 2
Popularity: 0.143829
First Submitted: 2016-07-24 16:59
Last Updated: 2016-07-31 14:46

Latest Comments

Bfg commented on 2016-08-05 18:32

As suggested from the author the trouble seems related to the software used to build the installer under windows:
"Looks like a lot of virus scanners report false positives for NSIS installers. Sourceforge have checked the file and whitelisted it."

Bfg commented on 2016-08-02 09:03

Hi filand,

Having a troyan malware in a password manager is a real headache. No feedback from the author until now. Almost certainly is only false positive but I'll stay with the old version for some time. When you have a new password manager I'll be happy to give a try.

filand commented on 2016-07-31 21:44

Hi Bfg,

I don't use windows since years, but thank you for the notification! I just checked Java binaries with multiple antivirus programs and it seems not to contain any malware. However, you are right about the *.exe. Even if you try to download it from SourceForge, they warn you.

However, I'm going to search for another program to store my passwords now. May be I should write one myself :)

Bfg commented on 2016-07-31 18:06

Hi filand
Installed new version in arch everything ok.
Now I'm trying to install upm in a win10 pc using sourceforge windows binary and it alerts me than inside there is malware.
Scanning with clamav (still windows version) it reports "Win.Trojan.Agent-1370860".
My question is: do you think is a problem windows specific version or someone has injected malware in the java binary?