[Building Sakai] Antivirus integration in Sakai
Jose Rabal Sastre
joserabal at um.es
Thu Jan 13 01:24:21 PST 2011
Hi Tony, thanks for your answer.
I think that move the AV scanning away from the HTTP upload is a good
possible solution. The file could be uploaded, scanned in a background
task, and deleted later if the scanning finds a virus. This would open
multiple Sakai possible variations like disabling the downloading of the
file while the process is running, show a "Scanning.." message,
notifying user via email on possitive with the virus name, etc.
Maybe a new JIRA improvement can be opened.
José Rabal Sastre
University of Murcia
El 12/01/2011 9:36, Tony Stevenson escribió:
> On Wed, Jan 12, 2011 at 09:14:13AM +0100, Jose Rabal Sastre wrote:
>> Hi All,
>>
>> We are evaluating the possibility of integrating ClamAV antivirus in
>> Sakai. Initially, we are seeing that the time to upload a file is
>> increased too much because the scan of a 6 MB file takes over a minute.
>> The PC where we provisionally hosted the antivirus daemon is a 2.50Mhz
>> dual core with 3 GB of RAM.
> José, AV clients are notorious for not being threaded. In other words it's a one in, one out operation.
> Also, streaming a file through an AV, during upload requires you to have a collection of machines to pass the AV off too. If you don't want to have a queue form on a prodcution platform.
>
> have you considered uploading the file to a chroot type jail on the system, and scanning once on disk. This can be a background task, and will not affect the HTTP upload, as this is what you are suffering from, you have two choices:
>
> 1) Extend your HTTP tcp lifetime session timeout value (dangerousm in that you can easily invoke a DoS style attack by opening lots of sessions and waiting for the longer timeout to expire)
>
> 2) Move the AV scanning away from the HTTP upload, like I suggest earlier.
>
>
>
>
>> Has anyone tried to integrate ClamAV in Sakai with an acceptable
>> performance?
>>
>> Thanks.
>>
>> José Rabal Sastre
>> University of Murcia
>>
>> _______________________________________________
>> sakai-dev mailing list
>> sakai-dev at collab.sakaiproject.org
>> http://collab.sakaiproject.org/mailman/listinfo/sakai-dev
>>
>> TO UNSUBSCRIBE: send email to sakai-dev-unsubscribe at collab.sakaiproject.org with a subject of "unsubscribe"
More information about the sakai-dev
mailing list