Custom configuration

How to edit the configuration file on Linux

Custom application configuration can be achieved by editing the customer.env environment file.

The following steps are required to change different parameters in this file:

Navigate to /etc/mdss/customer.env and open the file
If the parameter that needs to be changed is not present, add the new parameter with the desired value. If it already exists, just edit the value.

Save the file
In order for the changes to apply, please restart the application by running the following command:

How to edit the configuration file on Windows

Custom application configuration can be achieved by editing the customer.env environment file.

The following steps are required to change different parameters in this file:

By default the file is located in C:\Program Files\OPSWAT\MetaDefender Storage Security\config\cutomer.env
If the parameter that needs to be changed is not present, add the new parameter with the desired value. If it already exists, just edit the value

Save the file
In order for the changes to apply, please restart the application by running the following command:

Increase the number of concurrent scans

To be able to scan multiple files at the same time, the event bus needs to be configured accordingly. Please add the following environment variable in your customer.env file (as described above):

Environment Variable	Default Value	Maximum Value	Description
RABBITMQ_SCANNING_PREFETCH_COUNT	20	200	Allow up to 50 files to be scanned at the same time.

MetaDefender Core certificate validation

Configure certificate validation for MetaDefender Core integration.

Environment Variable	Default Value	Possible Values
MD_CORE_CERTIFICATE_VALIDATION	0	0 - Use the default .NET certificate validation 1 - Ignore certificate chain errors 2 - Ignore all certificate errors

Description

0 → A MetaDefender Core server with invalid certificate can't be integrated
1 → A MetaDefender Core server with certificate chain errors can be integrated
2 → A MetaDefender Core server with invalid certificate can be integrated

SMB/SFTP Real-Time Processing configuration

Configure different behaviors on the following storage units for Real-Time Processing.

SMB

Environment Variable	Default Value	Possible Values
DISCOVERY_SERVICE_SMB_RTP_HANDLING	0	0 - Match a file by performing a database lookup 1 - Match a file by checking its attributes

SFTP

Environment Variable	Default Value	Possible Values
DISCOVERY_SERVICE_SFTP_RTP_HANDLING	0	0 - Match a file by performing a database lookup 1 - Match a file by checking its attributes

Description

To support different scenarios, the discovery process can be configured as follows:

0 → List all files and perform a database lookup to identify it
1 → This is a performance-optimized file discovering technique, but it has some side effects on Windows-based SMB / SFTP units because moved files that have a modified date older than the real-time processing starting date will not be considered as new files.

MetaDefender Core unavailability period

Configure the period of time a MetaDefender Core server is considered unavailable when a scan failure occurs.

Environment Variable	Default Value	Description
LOAD_BALANCER_MD_CORE_UNAVAILABLE_TIME	5	When a scan fails, the respective MetaDefender Core server will be unavailable for this period of time (in minutes). The load balancer cannot choose it for another file during this time period.

Azure Blobs

Configure the number of blobs read in one request

Environment Variable	Default Value	Max Value	Description
AZURE_BLOB_PAGE_SIZE	100	5000	Number of blobs discovered in container in a single request.

Amazon S3

Configure the validity duration of presigned URL used for download files from storage

Environment Variable	Default Value	Min Value	Description
PRESIGNED_URL_EXPIRATION_SECONDS	259200	30	Value is defined in seconds

Last updated on

Was this page helpful?