"resolving" as this has been rolled into a TODO on the Horde_Form rewrite.

I won't veto against such a thing.

Jan - how about as an option for Horde_Form file uploads. Seems like 
being able to run uploaded files through a/v before we do something 
like put them into a database (and then serve them out again via VFS + 
gollem - no other backend there to do the check) might be good.

The problem is that most email AV systems delete mail with viruses 
with no feedback to the user. So if a user sent a legitimate mail with 
a virus, it will never says that it was rejected.

So, IMO, would be useful only an option for checking file loaded from 
user PC to horde, and not all download (that should be already checked 
by email AV).

I always thought it was not the job of a web frontend to run these 
kind of checks, but I could be convinced. I still think this should be 
done in the backends (email server, ftp server, samba server etc).

I don't see making this specific to clamav, but a general "file 
filter" hook might be interesting ... if we centralized sending files 
to users (downloading) more in Horde 4, we could put all kinds of 
optional filters on it - user defined virus filters, logging, 
compression... Thoughts?

Would be nice if all horde applicatons can have an option to scan any 
opened file (e.g.: imp attachmentes, gollem load files, ...) with the 
open source clamav [1] antivirus, and tell the user or block the 
loading if a virus is found.



[1] http://www.clamav.net/