Contains paths to the locations where scanning is allowed when an HTTP client sends scan requests over a TCP socket from a remote computer. Scanning in other locations is prohibited. These paths are located in the file system of the computer with the Kaspersky Scan Engine server. Restricting the scan area prevents scanning the whole file system of the Kaspersky Scan Engine server by a command from the outside.
Kaspersky Scan Engine does not add or remove objects in the directories specified by ScanningPath. The HTTP client has to send objects to scan, then remove them after scanning.
Path
DirectorySettings > ScanningPaths
Attributes
This element has no attributes.
Nested elements
This element is a container for the following nested elements:
Specifies a location where scanning over a TCP socket in scanfile mode is allowed.
It is not recommended to use links as paths due to security reasons. Use absolute paths instead.
Possible values:
Allows scanning files that are located inside this directory and all its subdirectories.
The directory must be located on the same computer as Kaspersky Scan Engine or on a remote hard disk mounted on that computer.
The path must start from the root directory of the computer that Kaspersky Scan Engine is installed on.
The kavhttpd service must have permissions to read files in the directory and its subdirectories.
Allows scanning of the specified file.
The file must be located on the same computer as Kaspersky Scan Engine or on a remote hard disk mounted on that computer.
The path must start from the root directory of the computer that Kaspersky Scan Engine is installed on.
The kavhttpd service must have permissions to read the file.
/ (forward slash)Allows scanning of all files.
For Linux systems only.
Each path is specified inside its own <ScanningPath> element.
Example
The following is an example of this element.
<ScanningPaths> <ScanningPath></ScanningPath> </ScanningPaths> |