- Newest
- Most votes
- Most comments
Hello.
Is there a recommended way to handle pre-existing objects in buckets where malware protection is enabled?
Currently, existing objects cannot be inspected, so the only way is to upload a new version of the object or copy it using the "aws s3 cp" command.(As of September 2024)
https://docs.aws.amazon.com/guardduty/latest/ug/gdu-malware-protection-s3.html
Malware Protection for S3 helps you detect potential presence of malware by scanning newly uploaded objects to your selected Amazon Simple Storage Service (Amazon S3) bucket. When an S3 object or a new version of an existing S3 object gets uploaded to your selected bucket, GuardDuty automatically starts a malware scan.
Is it on the roadmap to support on-demand/existing objects scanning?
Unfortunately, there is currently no announcement from AWS that existing objects will also be subject to inspection.
Also, no announcement has been made regarding the roadmap for feature development.
If your AWS account has an AWS support developer plan or higher contract, I think it would be a good idea to make a feature request.
https://docs.aws.amazon.com/awssupport/latest/user/case-management.html#choosing-severity
Relevant content
- Accepted Answerasked 2 years ago
- asked 6 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 9 days ago
- AWS OFFICIALUpdated 2 years ago