Besides the standard REQMOD and RESPMOD, ICAP Server supports the FILEMOD (file modification) ICAP methods.
FILEMOD lets the client to pass a file name and path to the ICAP Server so that it can scan the file in place (rather than streaming the file to the ICAP Server through TCP for scanning).
The FILEMOD method deviates from the ICAP 1.0 specification that is defined in RFC 3507.
MetaDefender ICAP Server can be integrted to ICAP clients that implement the FILEMOD method. As FILEMOD is non-standard, the integration may, however, not be as smooth as expected.
Client FILEMOD request
Server response to FILEMOD
This response returns a 403 Forbidden status, which indicates that -in this example- a virus was found, which is indicated in the X-Violations-Found header.
Date: Thu Nov
Service: MetaDefender ICAP Server
EICAR Test String