Are uploaded attachments scanned for malware?

HARTerra

If a Survey123 form is used for a public facing survey (either mobile or via web) and allows for attachments (photos, PDFs, etc...), are these files scanned for malware?

What best practices and tools are people using ensure that uploaded content is safe before saving or allowing it to be brought internally to their organizations.

What practices are people using when having these attachments stored in an on-premise database or hosted feature layer?

rsun_TQB

Hi @HARTerra,

Such as good question...I don't think they do, but I will let Esri staff to answer this question. You may want to contact their support.

I am wondering they might have some work around over this issue.

Thanks,

Reno

ChristopherCounsell

Yes, Randal Williams has posted about it here:

https://community.esri.com/t5/arcgis-survey123-questions/survey123-and-agol-scan-photos-for-malware-...

Randal Williams works for the ESRI security team. Their Trust Centre has resources, some of which are linked in the above post. You should contact the trust centre (not support) if you have specific questions around security requirements.