Hi!
I have a requirement for a tar file to be relayed via a server located in a DMZ. The contents of that tar file should be checked to ensure they don't contain any viruses or malware before forwarding. The file transfer mechanism / protocol is proprietary so using some form of appliance is not possible.
I have written a little routine in VBScript which is called upon file receipt to 'untar' the file contents into a Scratch folder and then check the last line of the AVMan.log file for any malware being detected following the untar
Unfortunately in some circumstances the AVMan.log file writes are apparently cached, so potentially virus ridden data is being relayed on rather than quarantined.
Short of calling a doscan.exe is there any other way of getting AVMan.log to be updated or is there a better way of programmatically telling if SEP has spotted something nasty?
Target system = Windows 2003 standard with Symantec Endpoint Protection 11
Development system = Windows XP with Symantec Endpoint Protection 11.0
Thanks
Kevin