[clamav-users] Run script on file scanned but no virus found
Genet Bouron
gbouron11 at outlook.com
Thu Nov 2 17:55:48 UTC 2017
Am 02.11.2017 um 18:31 schrieb Genet Bouron:
>> Quit being an ass. Your recent posts have taken a very negative tone. You have been kicked off of other lists because you are rude and impolite. Just stop talking.
>>
>> STOP IT and grow up.
>i can't remember that i asked you!
No, you didn't. My apologies.
>anything based on "creates this additional file within 0.025 seconds" is
>broken by design while calling clamdscan directly is free of
>race-conditions and combined with mod_security you can fire up a script
>realtime within file uploads
>
>
>
>SecRule FILES_TMPNAMES "@inspectFile
>/etc/httpd/modsecurity.d/check-upload.php"
>"id:'141',phase:2,block,status:400,t:none"
THIS is helpful! Thank you! Reindl, you are smart and have a lot to add. Thank you for providing beneficial details and explanation.
>so until you have nothing technical to say just shut up
I concur. :) <3
> Am 02.11.2017 um 16:28 schrieb Chris Johnson:
>> PHP checks for the existence for the file with (deleted) in the file
>> name, blocks the addition of this file to our records and deletes it.
>> Clam AV typically creates this additional file within 0.025 seconds
>> when testing with the eicar test file
>>
>> Is there a way of getting clamd to run a script when a virus is not found?
>
> why in the world don't you use clamdscan with exec() from your php-script and deal with the return value instead of such constructs with race conditions?
_______________________________________________
clamav-users mailing list
clamav-users at lists.clamav.net
http://lists.clamav.net/cgi-bin/mailman/listinfo/clamav-users
Help us build a comprehensive ClamAV guide:
https://github.com/vrtadmin/clamav-faq
http://www.clamav.net/contact.html#ml
More information about the clamav-users
mailing list