I was tasked to set up an open-source icap-server to scan files that are uploaded in one of our web applications.
The files base64-encoded withing the upload method and this seems to lead to the fortigate not being able to scan it properly.
Now I managed to set up an icap-server using "c-icap" and tested it with "clamav". So far it seems to work, at least EICAR files are detected.
Now the problem is, that my boss is basically a "Windows-only" person who says that any open-source AV can´t be trusted enough.
He wants me to try to have the requests/uploads sent to the c-icap server, but scanned with Windows Defender. ß Is there any - useful - way to accomplish this? Also, since I am super new to ICAP - are there any restrictions regarding which icap-server can be used?Like, is there any way to force requests to be handled with a metadefender-icap only, and not any other icap server?
Sorry if these questions are a bit unspecific and basic, but just started with ICAP yesterday!
Thank you!
c-icap with Windows Defender
1.9k Views Asked by Kevdor At
1
There are 1 best solutions below
Related Questions in C
- How to call a C language function from x86 assembly code?
- What does: "char *argv[]" mean?
- User input sanitization program, which takes a specific amount of arguments and passes the execution to a bash script
- How to crop a BMP image in half using C
- How can I get the difference in minutes between two dates and hours?
- Why will this code compile although it defines two variables with the same name?
- Compiling eBPF program in Docker fails due to missing '__u64' type
- Why can't I use the file pointer after the first read attempt fails?
- #include Header files in C with definition too
- OpenCV2 on CLion
- What is causing the store latency in this program?
- How to refer to the filepath of test data in test sourcecode?
- 9 Digit Addresses in Hexadecimal System in MacOS
- My server TCP doesn't receive messages from the client in C
- Printing the characters obtained from the array s using printf?
Related Questions in WINDOWS
- how to play a sounds in c# forms?
- Echo behaviour of Microsoft Windows Telnet Client
- Getting error while running spark-shell on my system; pyspark is running fine
- DirectX 9 With No SDK Installed - How To Translate a D3DMATRIX?
- Gradle 8.7 cannot find installed JDK 22 in IntelliJ
- 'IOException: The cloud file provider is not running', when trying to delete 'cloud' folder
- Cannot load modules/mod_dav_svn.so into server
- Issue with launching application after updating ElectronJs to version 28.0.0 on Windows and Linux
- 32-bit applications do not display some files in Windows 10
- 'bun' is not recognized as an internal or external command
- mkssecreenshotmgr taking a screenshot
- Next js installation in windows 7 os
- Can't resize a partition using Mini Tool?
- Is there any way to set a printer as default according with Active Directory Policy Security Group and PC hostname?
- Electron Printing not working on Windows (Works on Mac)
Related Questions in FILE-UPLOAD
- MERN Stack App - User Avatar Upload - 500 Error After Deployment on Render
- Maximum upload size exceeded when saving photos in summernote
- Upload images into public folder within two frontend applications
- Unhandled Runtime Error when uploading images on next JS project. got this error Check the render method of `FileUpload`
- Multer unable to process files
- nestjs , stream question, i dont know my code would synchronization or asynchronous
- Dynamically bind control to object in Mudblazor page
- Adding users file storage feature to my application
- Kendo Ui Angular File Upload
- React Native returns "Stream Closed" when uploading image using expo-image-picker
- Trigger Warning: Mysterious Memory Spike on Google Drive Upload using Google Cloud Run
- I cant upload df to my google disk with google API
- File Upload Handling: Inconsistent HTTP Response Codes for Different File Sizes with Exception in Tomcat
- Background images and pop up related issue in live
- Uploading files within a foreach loop
Related Questions in DEBIAN
- How to restrict user access on mounted NSFv4 share with all_squash option?
- Obtaining the user's home directory for a daemon application running as root in linux
- Make Bind DNS server to request only root DNS servers of IANA website
- Mokutil does'nt work in Google Cloud Compute Engine
- Install Gitlab Repository : Wordlists
- PHP apache2 - php script cli will write txt file but browser will not
- Docker error at build E: Release file for http://deb.debian.org/debian-security/dists/bookworm-security/InRelease is not valid yet
- Slow loading of WordPress site on development server despite fast database queries
- How to use pyinstaller on debian?
- Python 3.12 pip install mod_wsgi fails
- Using Packer to install Debian
- How to install PHP Extension SQLSRV on Azure App Service (PHP 8.2 / Linux)?
- "Read-only filesystem" error during docker build
- Python code for raspberry pi not "alt+tabbing" to new window with GPIO button
- Resolve dependencies of an arbitrary Debian or Ubuntu package
Related Questions in ICAP
- Multipart/form-data with chunked data transfer (ICAP protocol)
- How to test ClamAV service for potential threats
- ICAP RESPMOD hold and block downloading file
- c-icap with Windows Defender
- Squid configuration is not sending RESPMOD icap request, how to resolve?
- How to link to a shared library using Automake
- Java ICAP File Transfer Problem, File Is Corrupted
- Understanding ICAP Server File Transfer In Java Problem
- How to configure Squid to return custom error pages based on result of eCAP adapters?
- can I use System.Net.Http.HttpClient or System.Net.HttpWebRequest for ICAP services
- Apache mod_proxy and icap protocol
- Performance testing a service using ICAP
- How to control filtering in Apache Traffic Server using C#.NET application?
- Squid configuration with ICAP filter
- Create a custom response to an HTTP request using c-icap
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Check out this link: https://techcommunity.microsoft.com/t5/windows-it-pro-blog/metadefender-icap-with-windows-defender-antivirus-world-class/ba-p/800234 to see what Microsoft offers regarding Defender+ICAP.
I have used commercial ICAP solutions in the past (like Bluecoat) that allow plugging in multiple commercial virus engines (Kaspersky, Sophos, ...). These are appliances, and you don't need to tell your boss their internals are probably some sort of Linux ;-)
You can probably also set up a commercial antivirus solution on your Linux system and use that. Looking at this link: https://learn.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux it may even be possible to run Microsoft's Defender on Linux. I haven't tried it myself though. Unlike your boss, Microsoft realizes software shouldn't be made to just run on Windows anymore (even MS-SQL Server now runs on Linux).