Bug 1329079

Summary: [RFE] Need a AV container for scanning viruses
Product: Red Hat Enterprise Linux 7 Reporter: Alex Jia <ajia>
Component: rhel-server-containerAssignee: Frantisek Kluknavsky <fkluknav>
Status: CLOSED WONTFIX QA Contact: atomic-bugs <atomic-bugs>
Severity: high Docs Contact:
Priority: high    
Version: 7.4CC: sghosh
Target Milestone: rcKeywords: FutureFeature, Security, SecurityTracking
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Release Note
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-05-02 19:58:59 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Alex Jia 2016-04-21 07:02:21 UTC 
Description of problem:
At present, we only support scanning CVE for container/container image by atomic scan. But in some fields such as financial services, security is very important, customers probably also want to use AV(Anti Virus) for scanning containers/containers image to defect system security. 

Version-Release number of selected component (if applicable):
# rpm -q atomic docker
atomic-1.9-4.gitff44c6a.el7.x86_64
docker-1.9.1-28.el7.x86_64


How reproducible:
always.

Steps to Reproduce:
1. There is no available AV container images in our public docker registry

Actual results:
Can't scan viruses of container/container image

Expected results:


Additional info:

Maybe, we can build a clamd container image and also need to implement a AV client in atomic cmdline, such as atomic scan --av=clamd (--no-cve) or atomic av --driver=clamd, etc.
Comment 2 Subhendu Ghosh 2016-05-02 19:58:59 UTC 
Red Hat does not ship any antivirus software today. We work with the partner ecosystem to support customers requiring AV capabilities.