Antivirus for Linux on WebServer

Hello All about something,

if I can use the Free Antivirus for Linux
it's free as in free.

The question is how to make use of it as there is no interface (webserver to scanner).

Christian

QC said:

The question is how to make use of it as there is no interface (webserver to scanner).

My plan (or how I though I would do it) was to set up crontab to run on-demand scans regularly, and also activate on access. Then quarantine files it finds (if any) and use email alerts and Grafana or similar to check the log and alert me if there is any virus detections. 

www.sophos.com/.../savl_9_cgeng.pdf

QC said:

The question is how to make use of it as there is no interface (webserver to scanner).

My plan (or how I though I would do it) was to set up crontab to run on-demand scans regularly, and also activate on access. Then quarantine files it finds (if any) and use email alerts and Grafana or similar to check the log and alert me if there is any virus detections. 

www.sophos.com/.../savl_9_cgeng.pdf

Hello All about something,

depends on how the application webserver behaves (it might or might not be ok if an uploaded file disappears from the directory), what you or the users do with the uploaded files, and whether you want the users to be informed when they upload some (potentially) infected file.
on-access
scans the files both on open and close. Thus if something malicious is uploaded the close after write will trigger an alert (but the process writing it won't notice AFAIK). A subsequent open for read will fail though with access denied. The application must be able to handle this gracefully.

Christian

Thanks for pointing out caveats and how I should code the cms to handle a virus detections (read check after write).

It is going to be fun playing with it and feeding it EICAR files for testing.