#security (2022-05)

Archive: https://archive.sweetops.com/security/


james avatar

does anyone have a preferred solution for scanning user-uploaded files in AWS? edit: virus scanning

Grummfy avatar

there is some solution in the marketplace for it, but I’m also thinking to it so I’m intrested by your resulats

james avatar

yeah I turned up this after some brief googling, does anyone have experience with it?

james avatar

also, we’re using Rails, might be some solution there instead

Jonathan Le avatar
Jonathan Le
Antivirus protection for Amazon S3 bucketsattachment image

Scan your S3 buckets for viruses, worms, and trojans. bucketAV detects malware in real-time or on-demand.

yegorski avatar

Users of our web console are able uploads files which go to S3. Before they land in the bucket we use ClamV in a lambda to scan the file. Here is a guide that looks familiar though it might not be exactly what we did https://aws.amazon.com/blogs/developer/virus-scan-s3-buckets-with-a-serverless-clamav-based-cdk-construct/

Virus scan S3 buckets with a serverless ClamAV based CDK construct | Amazon Web Servicesattachment image

Edit: March 10th 2022 – Updated post to use AWS Cloud Development Kit (CDK) v2. Protecting systems from malware is an essential part of a systems protection strategy. It is important to both scan binaries and other files before introducing them into your system boundary and appropriately respond to potential threats in accordance to your […]