RE: Content monitorting in Application Security

[Paul Laudanski <zx () castlecops com>]

One problem that might rear up is the inclusion of server side scripting 
in such an uploaded HTML file.  The code might do something bad, but that 
doesn't mean the AV will catch it.

On Sat, 8 Jan 2005, Security wrote:

> Just have your virus engine monitor this folder and scan the files as
> they are created.
>
> I can't really think of any other way of doing it...
>
> Hope this helps,
>
> Alberto Mujica 
>
> -----Original Message-----
> From: Alfred Hitchcock [mailto:alfredhitchcock_007 () yahoo com] 
> Posted At: Friday, January 07, 2005 7:56 AM
> Posted To: Security
> Conversation: Content monitorting in Application Security
> Subject: Content monitorting in Application Security
>
>
>
>
> Hi All,
>
> I have a major doubt it would be of great help if anybody can provide
> solution to this.
>
> I have a web page which allows to upload files such as jpeg and html
> files.
>
> Is there any mechanisms which can detect malicious html files. E.g. if a
> html page has got a malicious java script such as alert('xss') then how
> can we check these things. One more point to be noted here is that
> uploading of file can be done by any user. 
>
>
>
> ________ Information from Computer Cops, L.L.C. ________
> This message was checked by NOD32 Antivirus System for Linux Mail Server.
>
>   part000.txt - is OK
> http://castlecops.com

-- 
Regards,

Paul Laudanski - Computer Cops, LLC. CEO & Founder
CastleCops(SM) - http://castlecops.com
Promoting education and health in online security and privacy.