SourceForge serving malware with OpenSource projects

Clemens Lang cal at
Tue Jul 15 15:38:50 PDT 2014


not commenting on the SF stuff. I think it's bad, too, but don't want
to get into that at the moment. Remember we cannot force upstream
people to a specific platform.

> Among others the author of FileZilla explicitly opted in to install
> malware with the Windows installer. I'm highly inclined to remove the
> package for MacPorts. I have problems trusting that software (other
> than that the software no longer works on < 10.9).

I'd actually argue we should keep the package, because it provides a
way to install FileZilla without relying on binaries built by the
developer (which might have crapware in their installer or have other

Clemens Lang

More information about the macports-dev mailing list