Jared wrote:
To increase (greatly, i guess) performance it would be great to have an opportunity to tell HAVP which server replies need to be passed to AV scanner, and which should be returned direct to client without any future checks. This should be defined depending on URL and/or response MIME type .
We have a URL black/whitelist at the moment.
Jared wrote:
For example image/gif, image/jpeg or, saying, text/plain responses need no check at all. But application/octet-stream or application/java-script responses must be checked always.
Filtering by MIME reduce security. The server could fake wrong MIME type. And there are also expolits in pictures. But I'm also thinking about this feature...