-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 09/02/16 18:18, Corey Erickson wrote: > This repository has begun triggering alerts in my enterprises > trend micro solution this morning. > > > centos.firehosted.com/7.2.1511/updates/x86_64/repodata/repomd.xml > > Any tips on ensuring this repository is never queried by my systems > ? > > It seems to keep getting picked up on freshly deployed vagrants > for development at this time. > > Thanks, Corey Erickson That mirror is one of the external mirrors that is listed on http://mirror-status.centos.org/ So my first question would be : why does TrendMicro suspect it's a malicious site ? If the host is compromised, that's worth mentioning the mirror admin (I'll send him an email with the contact email address he provided us when registering that mirror) Can you give us details about the reason why TrendMicro thinks that node is "malicious" ? I'll start a dedicated thread on the centos-mirror list if needed (https://lists.centos.org/mailman/listinfo/centos-mirror) Thanks, - -- Fabian Arrotin The CentOS Project | http://www.centos.org gpg key: 56BEC54E | twitter: @arrfab -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAla8VhsACgkQnVkHo1a+xU67WwCfXpgC6yznSXbfWltAQoQdGRfI dr0AnjrEGNtTQbiM6QTNe3BBl7/GJfPT =7S/M -----END PGP SIGNATURE-----