Custom configuration
How to edit the configuration file
Custom application configuration can be achieved by editing the customer.env environment file.
The following steps are required to change different parameters in this file:
- Navigate to /etc/mdss/customer.env and open the file
- If the parameter that needs to be changed is not present, add the new parameter with the desired value. If it already exists, just edit the value.
- Save the file
- In order for the changes to apply, please restart the application by running the following command:
Increase the number of concurrent scans
To be able to scan multiple files at the same time, the event bus needs to be configured accordingly. Please add the following environment variable in your customer.env file (as described above):
| Environment Variable | Default Value | Maximum Value | Description |
|---|---|---|---|
| RABBITMQ_SCANNING_PREFETCH_COUNT | 20 | 200 | Allow up to 50 files to be scanned at the same time. |
MetaDefender Core certificate validation
Configure certificate validation for MetaDefender Core integration.
| Environment Variable | Default Value | Possible Values |
|---|---|---|
| MD_CORE_CERTIFICATE_VALIDATION | 0 | 0 - Use the default .NET certificate validation 1 - Ignore certificate chain errors 2 - Ignore all certificate errors |
Description
- 0 → A MetaDefender Core server with invalid certificate can't be integrated
- 1 → A MetaDefender Core server with certificate chain errors can be integrated
- 2 → A MetaDefender Core server with invalid certificate can be integrated
SMB/SFTP Real-Time Processing configuration
Configure different behaviors on the following storage units for Real-Time Processing.
SMB
| Environment Variable | Default Value | Possible Values |
|---|---|---|
| DISCOVERY_SERVICE_SMB_RTP_HANDLING | 0 | 0 - Match a file by performing a database lookup 1 - Match a file by checking its attributes |
SFTP
| Environment Variable | Default Value | Possible Values |
|---|---|---|
| DISCOVERY_SERVICE_SFTP_RTP_HANDLING | 0 | 0 - Match a file by performing a database lookup 1 - Match a file by checking its attributes |
Description
To support different scenarios, the discovery process can be configured as follows:
- 0 → List all files and perform a database lookup to identify it
- 1 → This is a performance-optimized file discovering technique, but it has some side effects on Windows-based SMB / SFTP units because moved files that have a modified date older than the real-time processing starting date will not be considered as new files.
MetaDefender Core unavailability period
Configure the period of time a MetaDefender Core server is considered unavailable when a scan failure occurs.
| Environment Variable | Default Value | Description |
|---|---|---|
| LOAD_BALANCER_MD_CORE_UNAVAILABLE_TIME | 5 | When a scan fails, the respective MetaDefender Core server will be unavailable for this period of time (in minutes). The load balancer cannot choose it for another file during this time period. |
Azure Blobs
Configure the number of blobs read in one request
| Environment Variable | Default Value | Max Value | Description |
|---|---|---|---|
| AZURE_BLOB_PAGE_SIZE | 100 | 5000 | Number of blobs discovered in container in a single request. |
Amazon S3
Configure the validity duration of presigned URL used for download files from storage
| Environment Variable | Default Value | Min Value | Description |
|---|---|---|---|
| PRESIGNED_URL_EXPIRATION_SECONDS | 259200 | 30 | Value is defined in seconds |