/
Veeam evaluates .lynx files on the appliance as malware and throws a WARN

Veeam evaluates .lynx files on the appliance as malware and throws a WARN

Owned by Razvan Lupitu
Last updated: May 19, 2025

Veeam evaluates .lynx files as malware, but it shouldn’t.

AFFECTS ALL SUPPORTED VERSIONS OF CHECKMK FIRMWARE

We discovered that Veeam evaluates the .lynx files, which are present on the appliance, as part of the default Debian 12 Bookworm installation, as malware and throws a WARN:

The below files are present by default, on a freshly installed Checkmk appliance:

/usr/share/doc/w3m/keymap.lynx /usr/share/doc/w3m/examples/keymap.lynx /usr/share/doc/w3m/ja/keymap.lynx /usr/share/doc/w3m/ja/examples/keymap.lynx /ro/usr/share/doc/w3m/keymap.lynx /ro/usr/share/doc/w3m/examples/keymap.lynx /ro/usr/share/doc/w3m/ja/keymap.lynx /ro/usr/share/doc/w3m/ja/examples/keymap.lynx

And are part of the Debian architecture, as noted in the official Debian documentation.

The current Veeam issue is also described in this forum post.

This is, of course, a false positive alert and the files do not contain malware.