This forum is no longer active. Please post your questions to our new community site

Why does RubyStack installer access internet?

Subscribe to Why does RubyStack installer access internet? 5 post(s), 3 voice(s)

 
Avatar Steve 2 post(s)

Hi,

While I was installing RubyStack for the first time, ZoneAlarm popped up an alert that said a program was attempting to access the internet. I chose to answer No to ZoneAlarm’s question whether to permit the access. Now the installer appears to be waiting forever, with the status message “Waiting for MySQL to start” and the only option appears to be to cancel the installation.

What is the purpose of the internet access during installation? For security reasons, I would prefer not to trust the software with internet access.

Thanks in advance to anyone who responds helpfully!
Steve

 
Avatar antonio 621 post(s)

Hi Steve,

The installer is not trying to connect to the Internet, but to the MySQL server that is installed and configured with the stack. As you have forbidden the connection to it, the installer will be in the “Waiting for MySQL to start” state for a long time :)

Cheers

 
Avatar Steve 2 post(s)

Hi Antonio,

I see no evidence in Windows Task Manager that a MySQL process is running. Why does the RubyStack installer try to connect to it? How can users be certain that the RubyStack installer is not trying to do something malicious?

If my memory is correct, the installer asked at the beginning for an IP address. (127.0.0.1, I think.) If I enter that IP address into ZoneAlarm’s list of Trusted Zones, would that solve the problem?

Thanks again,
Steve

 
Avatar antonio 621 post(s)

I see no evidence in Windows Task Manager that a MySQL process is running.

The MySQL process is called mysqld.exe. Maybe your firewall has blocked its execution, I’m going to download ZoneAlarm to test it and I’ll get back to you.

Why does the RubyStack installer try to connect to it?

The RubyStack installer tries to connect to the MySQL server to configure it with the parameters you have entered at installation time (password, for instance).

How can users be certain that the RubyStack installer is not trying to do something malicious?

You can’t. You can’t be certain about ANY program you download. How can you be sure that ZoneAlarm (to name a program I know you have installed in your computer) is not doing anything nasty right now to your computer? You have to trust some programs. The RubyStack won’t connect to the outside, but if you are concerned about it, you can even unplug your connection before installing :)

If my memory is correct, the installer asked at the beginning for an IP address. (127.0.0.1, I think.)

That’s the loopback IP address. It’s a special address, meaning “this computer”. You can find more information about it at http://en.wikipedia.org/wiki/127.0.0.1

 
Avatar Daniel Lopez Administrator 140 post(s)

Hi Steve,

in addition to Apache or MySQL opening listening ports, there are a couple of things in the installer that may be causing Zone Alarm to trigger an alert:

- We need to check that specific ports are free (so we can use them). Sometimes we need to do this by actually trying to bind to the port. We use 127.0.0.1 for these tests, which does not trigger Windows built-in firewall, but may actually trigger others
- If the installer needs to get the hostname or IP address of the machine (for example to set it as the default value in a page)
then in some cases it may make a DNS request or similar and trigger a warning as well.

One thing that we should probably start doing is digitally signing the packages (both Windows and Unix) so you can also verify the installers were not tampered by any third party that, for example, may intercept your download (unlikely, but possible)

Best regards

Daniel