Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Srikanth Kollu (SKollu82)
Veterans Affairs
Lead System Architect
Veterans Affairs
US
SKollu82 Member since 2015 5 posts
Veterans Affairs
Posted: Dec 13, 2017
Last activity: Jan 2, 2018
Posted: 13 Dec 2017 0:04 EST
Last activity: 2 Jan 2018 7:41 EST
Closed

How to identify and prevent malicious file upload via Add Attachment

We have a requirement to block malicious file attachments uploaded via Add Attachments. Can anyone suggest any approach or provide some pointers to achieve this? Thanks in advance!

To see attachments, please log in.
Low-Code App Development

Posted: 6 years ago
Posted: 13 Dec 2017 0:24 EST
Ujjwal Kumar Shukla (UjjwalShukla_GCS)
PEGA
Senior Manager, Technical Support
Pegasystems Inc.
IN

Hi There,
It depends mechanism with which you would determine if a attachment is malicious.
Generally extension(.exe,.js etc) of a file is used to determine if it is malicious.

If this is you requirement the you can check below link
https://collaborate.pega.com/question/how-can-you-restrict-file-attachments-extension-type-entire-application-such-exe

Thanks,
Ujjwal

To see attachments, please log in.
Posted: 6 years ago
Posted: 13 Dec 2017 0:36 EST
Srikanth Kollu (SKollu82)
Veterans Affairs
Lead System Architect
Veterans Affairs
US

Thanks for the reply Ujwal. I have already added the logic in CallVirusCheck  activity to allow only certain valid file types but our requirement is to check if a jpeg file for example is malicious and prevent it from attaching to a case.

To see attachments, please log in.
Posted: 6 years ago
Posted: 13 Dec 2017 1:35 EST
Srikanth Kollu (SKollu82)
Veterans Affairs
Lead System Architect
Veterans Affairs
US

Yes, we need to check if the file being attached is malicious. For example, We need to restrict if a user is trying to attach a malicious jpeg file. We should allow if the jpeg file is not malicious.

To see attachments, please log in.
Posted: 6 years ago
Posted: 29 Dec 2017 15:38 EST
Srikanth Kollu (SKollu82)
Veterans Affairs
Lead System Architect
Veterans Affairs
US

Hi I have already used the CallVirusCheck activity to allow only certain file types. But the issue is when users trying to upload a jpeg file that is malicious. We need to run some antivirus check on the files being attached and prevent attaching if the file is malicious. So the question comes to how we can know if a file being uploaded is malicious and prevent it from attaching to the work object?

To see attachments, please log in.
Posted: 6 years ago
Posted: 30 Dec 2017 13:48 EST
Devarajulu Prathapaneni (DevarajPrathapaneni)
Swedbank AB
Software engineer
Swedbank AB
SE

Hi, I think you need to add custom Java code to verify file is corrupted or malicious. Please try in other Java related forums. OOTB does not have code for this.

Thanks,

Deva

To see attachments, please log in.
  • Kanimozhi Balakrishnan Mounika Manne Neelapala Kusuma sri
Posted: 6 years ago
Posted: 31 Dec 2017 23:21 EST
Rachit Agarwal (Rachit_Agarwal)
PEGA
Principal Technical Support Engineer
Pegasystems Inc.
US

Hi, 
I tried searching more but could not find an OOTB apart from using CallVirusActivity. But I found the below article. 
https://stackoverflow.com/questions/22652489/how-to-implement-virus-scan-on-file-upload-in-a-spring-3-mvc-application
In this article, the path is given as local. So, you can give server path. Please check and let me know if this helps.
Regards,
Rachit

To see attachments, please log in.
Posted: 6 years ago
Posted: 2 Jan 2018 7:41 EST
Matthew Morency (morem) Senior Principal Cloud Security Engineer
Pegasystems Inc.
US

Using the CallVirusCheck activity is the recommended solution.  You will probably need to implement some custom Java code to call you virus scanner of choice.  If the Pegasystems employee associated with this issue would like to discuss this in more detail then they should feel free to ping me. 

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice