We allow users to upload files to our java web application. We are very security conscious as we go through security audits form large banks.
We have looked at the market and have tried out Metascan Online. We require an API so as to give a response to the user rather than just quarantine the virus
Has anyone had experience of Metascan, Scanii etc or other online scanners but would they satisfy a security audit?
Alternatively we have come across Symantec Protection Engine for Cloud Services which runs on the server. Are there alternatives to Norton and are there performance issues with AV running on the servers?
Also interested in comments on security audits regarding the necessity of having AV running on a Red Hat Linux server?