Integrating ClamAV with NGINX

clamav nginx

We're using NGINX as our main web server, after moving away from Apache. We recently decided to test ClamAV integration, to make sure files uploaded by users are thoroughly scanned prior to transfer to Amazon S3.

I'm looking for an easy way to integrate NGINX and ClamAV, i.e. every file uploaded to a temporary folder gets scanned, and removed if found to be infected.

I found mod_clamav for Apache, but no similar support for NGINX. Is there a good way to integrate ClamAV and NGINX, or should it be done on an application level (i.e., download the file, and then trigger an application that will scan prior to uploading)?


Solution 1:

The only method I could see of doing this would be to use Lua within Nginx to perform the scan, this would however block the Nginx worker which means that it would not be serving content.

I would strongly suggest performing the check within your application rather than at the web service level.

If you come up with a way to perform the scanning without blocking the worker I would love to know it as have had to perform it within the app previously.

Related

Can Azure storage account (files) be mounted on multiple servers?
Hyper-V: Unable To Start a VM From ISO File
Grep Not Working (on some files)?
How to erase/delete entire Elastic beanstalk environment
E3-1240 v5 cpufreq-info says: "no or unknown cpufreq driver is active on this CPU"
Best way to install security updates on amazon ECS instances
Recover from Cisco ASA 5508-X internal flash failure?
Auto Scaling AWS Lightsail
CentOS/RHEL 7 LVM Partitioning in Kickstart?
How to map a domain name to a load balancer in google cloud platform?
ANAME / ALIAS records for BIND
Fix ZFS DEGRADED pool that had hot spare