I've successfully integrated squidclamav with my system. my testing has shown
it functioning on http connections but it is not blocking the eicar test virus
on https connections. https connections go through the squid proxy ok, however
they do not appear to scan or write any debug information to the
squidclamav.log file. Is squidclamav capable of scanning files downloaded
through https? is there some addition configuration have to do? I could not
find any documentation on https connections specifically.
Thanx,
-Ryan
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I've successfully integrated squidclamav with my system. my testing has shown
it functioning on http connections but it is not blocking the eicar test virus
on https connections. https connections go through the squid proxy ok, however
they do not appear to scan or write any debug information to the
squidclamav.log file. Is squidclamav capable of scanning files downloaded
through https? is there some addition configuration have to do? I could not
find any documentation on https connections specifically.
Thanx,
-Ryan
Hi Ryan,
On stream web traffic anti-virus can only scan GET request, i-e http query.
Https or method CONNECT can not be
decrypted as the key certificate is only shared by the client and the remote
server.
Regards,