THE BPD Blog

From blogs to case studies to news, we love sharing our tips and tricks for asset management, cloud, IoT and smarter operations.

by | Oct 12, 2018

Virus Scanning Maximo Attached Documents and Migration Packages

You can upload attached documents to many Maximo records such as Work Orders, Purchase Orders and Purchase Requisitions as well as uploading Migration Packages through the Migration Manager application. Maximo will allow you to upload anything if it has an extension which it will accept, for example .txt, .doc, .docx and .zip.
During a recent penetration test, we discovered that not all virus scanners will remove harmful attached documents from the server once they are uploaded. Even if they do, by that point they have been written to disk, so the damage may already be done!  It would be better if Maximo could scan the attachments before writing them to disk. This way, they can’t do any harm, or at least reduce amount of damage they may cause. After some digging around, it turns out there are actually three system properties and a third party virus scanner that can enable this functionality.

Example

In this example we will be uploading a .txt file called TEST.txt which will contain the EICAR text. This text is not a virus, but it used by all major virus scanning software to test functionality without having to use a real virus or worm. So, if we uploaded this to Maximo (in an ideal scenario) it should be picked up by the virus scanning software on the server and removed.
This is what our “virus” looks like:

If we upload it to a “vanilla” Maximo system, we can see Maximo processes it and it sits quite happily on the server’s file system:


Now, if we enable the third party virus scanner for Maximo when we try and upload the document, we get the following error message:

This file is not written to disk and can’t be uploaded to Maximo.

Setting up the Virus Scanner in Maximo

Enabling the virus scanner in Maximo is very simple. First you need a virus scanner that can use the ICAP protocol. In this example we are using the Symantec protection for cloud services.  The ICAP functionality setup in the Symantec protection for cloud services is very simple as is shown below:

There are three system properties which don’t seem to be documented anywhere but can been seen in the Maximo logs as warnings. This is because they don’t exist by default in Maximo.
The properties are:

  1. mxe.doclink.VirusScannerIPAddress – The IP address where the virus scanner is hosted. This is set to the IP from the ICAP configuration 192.168.254.59.
  2. mxe.doclink.VirusScannerPort – The port the virus scanner uses for its ICAP protocol. This is set to the port number from the ICAP configuration 1345.
  3. mxe.doclink.isVirusScanEnabled – Set to true or false to enable the virus scanning functionality.

These will need to be added through the System Properties application. Once applied, virus scanning is enabled. If it causes any issues, it can be disabled by setting the mxe.doclinks.isVirusScanEnabled system property to false.

Chris Brown

Chris Brown

As an Engineer, Chris is one of BPD Zenith’s most experienced developers. With over 10 years of in-depth technical experience, Chris is the most certified member of the UK team, specialising in Maximo versions 4 to 7.6, Tivoli Process Automation Engine, DB2, SQL Server and Oracle DBA. Chris can develop custom applications and extend the functionality of standard Maximo applications using both the Maximo Application Designer and the Java programming language to meet client requirements. He is knowledgeable in developing custom reports and modifying existing reports using both Actuate and BIRT report designers.

0 Comments

Resourcing for Success

Resourcing for Success

Project resourcing is frequently one of the hot topics in our meetings. I frequently receive questions such as: Can we start the project now? Can we commit this resource to deliver from start to finish? Can we upskill one of our techs? Can we provide an additional...

What is Asset Performance Management?

What is Asset Performance Management?

What is Asset Performance Management? Introduction As a definition, Asset Performance Management (APM) encompasses the capabilities of data capture, integration, visualization, and analytics tied together for the explicit purpose of improving the reliability and...

Maximo Relationships

Maximo Relationships

In this blog I will be explaining what a Maximo Relationship is, how to create one, and, the benefits of having Maximo Relationships. What is a relationship? The way in which two or more things are connected, or the state of being connected.Why do we need Maximo...

Maximo Data Imports: A simplified guide

Maximo Data Imports: A simplified guide

All your Maximo data import needs simplified Being able to manage data loads and data extracts is a powerful ability. It can substantially improve processes and reduce delays. Maximo offers not one but multiple ways of handling data. Equipped with user-friendly error...

Sign up to our free newsletter to explore emerging technologies, industry events and Maximo best practice.

Discover the Maximo Application Suite

Discover BPD's award winning Maximo and IoT Services

Come with BPD Zenith to the future of Asset Management

Partner Ecosystem

BPD Zenith partners with a diverse array of the world’s top Technology, Business and Solution Integration leaders.