DEV Community

Cover image for Implement a antivirus clamav scanner with rest api in dokku
Andres ๐Ÿ in ๐Ÿ‡จ๐Ÿ‡ฆ
Andres ๐Ÿ in ๐Ÿ‡จ๐Ÿ‡ฆ

Posted on

Implement a antivirus clamav scanner with rest api in dokku

#dokku #docker #clamav #api

At work, I had the need of implement a virus scanner for all files uploaded to the server.

Well lets give a chance the clamav a deamon virus scanner opensource.

I found a project what implement a rest api very easy!

https://github.com/benzino77/clamav-rest-api/

I run the docker compose of the proyect and works like charm!

It use clamav in a docker container, an a api rest application to scan the file, using a network connector.

I'm not a big fan of docker, for run the docker project by hand, but dokku handle very well and can manage (deploy, maintain, etc) very well without effort.

With the good advice of the core developer from dokku. I can implement very fast the solution in dokku.

Then let's jump in....

                                                                        โ”Œโ”€โ”€โ”€โ”€โ”€โ”€โ”
                                                                        โ”‚      โ”‚
     โ”Œโ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”                 โ”Œโ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”       โ”‚  N   โ”‚
     โ”‚                   โ”‚   clamav-net    โ”‚                    โ”‚  proxyโ”‚  G   โ”‚
     โ”‚ Clamav (clamd)    โ—„โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”ค   Rest API  :3000  โ”‚โ—„โ”€โ”€โ”€โ”€โ”€โ”€โ”ค  I   โ”‚
     โ”‚                   โ”‚                 โ”‚                    โ”‚       โ”‚  N   โ”‚
     โ””โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”˜                 โ””โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”€โ”˜       โ”‚  X   โ”‚
                                                                        โ”‚      โ”‚
                                                                        โ”‚  :443โ”‚
                                                                        โ”‚      โ”‚
                                                                        โ””โ”€โ”€โ”€โ”€โ”€โ”€โ”˜
Enter fullscreen mode Exit fullscreen mode

Basically this is implemented by dokku..

first the nginx proxy the http request to the rest api application which is listen at :3000 in the container, to do that needs to communicate with clamd the deamon which scan the file and return the result to the apirest.

Easy right ?

My first approach to solve this is creating a plugin doing that but @savant Jose Gonzales from dokku suggest better create two dokku apps using https://dokkupose.netlify.app

The I paste the docker-compose file to the dokkupose and for my surprise it give exactly all the commands needed to deploy in dokku. Feeling like this:

black magic was generated

Then the only missing here is the network link between clamd and the rest-api. I handle it by hand.

I left you the script i made to create the solution with comments:

Question?

What about the signature updates ?
In container handle it by automatically and update daily

you don't know about dokku ?

GitHub logo dokku / dokku

A docker-powered PaaS that helps you build and manage the lifecycle of applications

Dokku

Build Status Ubuntu Package Arch Package Slack Group Documentation OpenCollective OpenCollective Patreon

Docker powered mini-Heroku. The smallest PaaS implementation you've ever seen.

Sponsors

Become a sponsor and get your logo on our README on GitHub with a link to your site. [Become a sponsor]

OpenCollective Sponsor 0 OpenCollective Sponsor 1 OpenCollective Sponsor 2 OpenCollective Sponsor 3 OpenCollective Sponsor 4 OpenCollective Sponsor 5 OpenCollective Sponsor 6 OpenCollective Sponsor 7 OpenCollective Sponsor 8 OpenCollective Sponsor 9 OpenCollective Sponsor 10 OpenCollective Sponsor 11 OpenCollective Sponsor 12 OpenCollective Sponsor 13 OpenCollective Sponsor 14 OpenCollective Sponsor 15 OpenCollective Sponsor 6 OpenCollective Sponsor 17 OpenCollective Sponsor 18

Backers

Support us with a monthly donation and help us continue our activities. [Become a backer]

OpenCollective Backer 0 OpenCollective Backer 1 OpenCollective Backer 2 OpenCollective Backer 3 OpenCollective Backer 4 OpenCollective Backer 5 OpenCollective Backer 6 OpenCollective Backer 7 OpenCollective Backer 8 OpenCollective Backer 9 OpenCollective Backer 10 OpenCollective Backer 11 OpenCollective Backer 12 OpenCollective Backer 13 OpenCollective Backer 14 OpenCollective Backer 15 OpenCollective Backer 16 OpenCollective Backer 17 OpenCollective Backer 18 OpenCollective Backer 19 OpenCollective Backer 20 OpenCollective Backer 21 OpenCollective Backer 22 OpenCollective Backer 23 OpenCollective Backer 24 OpenCollective Backer 25 OpenCollective Backer 26 OpenCollective Backer 27 OpenCollective Backer 28 OpenCollective Backer 29

Requirements

A fresh VM running any of the following operating systems:

  • Ubuntu 20.04 / 22.04 / 24.04 (amd64/arm64) - Any currently supported release
  • Debian 11+ (amd64/arm64)

An SSH keypair that can be used for application deployment. If this exists before installation, it will be automatically imported into dokku. Otherwise, you will need to import the keypair manually after installation using dokku ssh-keys:add.

Installation

To install the latest stable release, run the following commands as a user who has access to sudo:

wget -NP . https://dokku.com/install/v0.35.5/bootstrap.sh
sudo DOKKU_TAG=v0.35.5 bash bootstrap.sh
Enter fullscreen mode Exit fullscreen mode

You can then proceed to configureโ€ฆ

View on GitHub

It's like heroku but selfhosted.

Top comments (0)

Read next

marvynharry profile image

Why You Should Use JSON Web Tokens (JWT) for Your Applications?

Marvyn Harryson -

tech-vexy profile image

FileShare| A FileSharing Platform built using Next.js and Pinata Files API

Veldrine Evelia Kaharwa -

cwdcwd profile image

DreamForge: AI Generated Stories

CW D -

wallacefreitas profile image

10 Best Practices for Writing Maintainable Docker Compose Files

Wallace Freitas -