- Author: Karl Krist
Just a very quick message about reduced website availability over the Fourth of July holiday.
Due to a security concern we will not be serving PDF files on a few of our ANR domains. Most notably this applies to the ucanr.edu domain.
Once this security issue is addressed (July 5th) we will restore the ability to download PDF files.
Sorry about the inconvenience.
For those of you interested in WHY we are taking this action:
Currently we have a PDF file on our server which is being flagged by the UC Davis Security Group as having malicious code. They have identified which large block of sites the file is coming from, but at this time cannot provide any further details. Our own scans have not identified the particular file.
In order to provide a safe environment for our clients, I have decided it is prudent to ensure that this malicious file is not going out to the public. Therefore, all PDF files are being blocked across a wide expanse of our server.
Due to the nature of our content management system, we do not control each file that is placed on our server. We do scan files upon their arrival into our system, but it is possible this file was uploaded prior to this particular threat being recognized.
The risk associated by this file is completely negated by recent Adobe Acrobat patches, but we cannot assume that all users are fully patched. Once again, in order to provide a safe computing environment we are taking appropriate steps to protect all users. I apologize for any inconvenience this may cause.