3. Archive Sanitization

MetaDefender Core v4 is able to sanitize whole uploaded archives and give a modified version of the original archive. Usually this means that a
sanitized archive contains all allowed files of the original archive and sanitized version of orignally blocked but sanitized files.

Operation

If archive sanitization is enabled for a type, then all archives within the original with the same type get sanitized as well. If there are
other archives inside the original for which the sanitization is disabled and their result is not allowed then those archives won't get into
the sanitized archive.

images/download/attachments/29936036/image2018-5-7_17-26-52.png

Use cases

Given the following file as example:

  • archive.zip

    • inner_archive_1.rar

      • eicar.jpg // threat

      • some_file

    • inner_archive_2.rar

      • some_file

    • some_file

    • eicar.pdf // threat

1. Zip to Zip sanitization is enabled

  • archive_sanitized_{data_id}.zip

    • inner_archive_2.rar

      • some_file

    • some_file

2. Zip to Zip and Rar to Zip sanitization are enabled

  • archive_sanitized_{data_id}.zip

    • inner_archive_1_{data_id}.zip

      • some_file

    • inner_archive_2_sanitized_{data_id}.zip

      • some_file

    • some_file

3. Zip to Zip, Rar to Zip and JPG to PNG sanitization are enabled

  • archive_sanitized_{data_id}.zip

    • inner_archive_1_{data_id}.zip

      • eicar.png

      • some_file

    • inner_archive_2_sanitized_{data_id}.zip

      • some_file

    • some_file