Does your site allow for file uploads of any sort? Pdfs? Jpegs? Anything whatsoever?

All these file formats are notorious for allowing malware to piggyback onto them (a technique known as Steganography).

How do you protect your file uploads? How do you think a service like facebook or Pinterest allow millions of file uploads every day – knowing that these could contain malware?

One alternative is to check your files for malware WHILE uploading – i.e. as part of the upload process, subject them to a scan of some sort.

Metascan is one such service – if you use their file upload in your web app, you can check images, pdfs etc. for malware

Anuj holds professional certifications in Google Cloud, AWS as well as certifications in Docker and App Performance Tools such as New Relic. He specializes in Cloud Security, Data Encryption and Container Technologies.

Initial Consultation

Anuj Varma – who has written posts on Anuj Varma, Hands-On Technology Architect, Clean Air Activist.

 Twitter Linkedin