Request overriding Limits of virus_scan
Status: Beta
Brought to you by:
chtsanti
Even if there is an max limit configured in the virus_scan module config.
An client can overwrite this limit if he use the direct url instead of the alias.
I see two solutions for this problem.
a) Allow to block the direct access of virus_scan
b) An way to block overriding the configured limites via request.
/virus_scan?allow204=on&sizelimit=off&mode=simple
/avscan
Anonymous