EPrints Technical Mailing List Archive
See the EPrints wiki for instructions on how to join this mailing list and related information.
Message: #10206
< Previous (by date) | Next (by date) > | < Previous (in thread) | Next (in thread) > | Messages - Most Recent First | Threads - Most Recent First
[EP-tech] Seeking advice on handling malicious file uploads in EPrints
- To: eprints-tech@ecs.soton.ac.uk
- Subject: [EP-tech] Seeking advice on handling malicious file uploads in EPrints
- From: Francis Jayakanth <fjayakanth@gmail.com>
- Date: Fri, 22 Aug 2025 16:42:47 +0530
CAUTION: This e-mail originated outside the University of Southampton. Dear Members, We are exploring ways to strengthen the security of our EPrints repository and would like to hear from the community about best practices in handling malicious file uploads. In particular, we are concerned about scenarios where: - Users upload executable files disguised as PDF documents. - Uploaded files may contain malware, viruses, or test signatures (e.g., EICAR) that could compromise system or user security. Do you scan uploaded files inline at the time of submission, or rely on scheduled background scans? How do you handle cases where infected or suspicious files are detected (e.g., blocking the submission, quarantining, or replacing with a warning notice)? Are there EPrints-specific plugins, workflows, or scripts that can help automate this? Any suggestions, shared experiences, or references to existing solutions would be most helpful. Thank you in advance. Best regards, Francis Francis Jayakanth
- Prev by Date: RE: [EP-tech] List of Plugins being used
- Previous by thread: [EP-tech] List of Plugins being used
- Index(es):