Does anyone worry about this? I have a form that allows users to upload files. My hosting company uses Clam Anti-Virus which will scan the files as soon as they are uploaded, but I was wondering if there was any way to actually inspect the file before it is written to the file system and then if a virus is found, return with an error message to the user.
Thanks,
Kris
Thanks,
Kris
Hi Kris,
As far as I know there is not way to inspect the file before it is uploaded - I can't imagine how that would work.
Bob
As far as I know there is not way to inspect the file before it is uploaded - I can't imagine how that would work.
Bob
Bob,
After I submitted the original post, I continued my research and found the following. Maybe it will help someone. I'm not sure yet if I can use it, but my hosting service is looking into it.
http://www.howtoforge.com/scan_viruses_with_php_clamavlib
Kris
After I submitted the original post, I continued my research and found the following. Maybe it will help someone. I'm not sure yet if I can use it, but my hosting service is looking into it.
http://www.howtoforge.com/scan_viruses_with_php_clamavlib
Kris
Hi Kris,
Looks interesting but I still don't see how it will improve on the scan your host already does?
Bob
Looks interesting but I still don't see how it will improve on the scan your host already does?
Bob
It's not the fact that it will improve the scan that the host does, but that user experience will be improved. The file is actually scanned while it is in the temp area before it is actually stored to the upload directory. Plus, you can return a meaningful message back to the user to let them know that the file they just uploaded contained a virus, and therefore did not upload successfully.
Kris
Kris
This topic is locked and no more replies can be posted.
