Support

I believe I had already replied to this question a lot of times. Running multiple security solutions does not offer better protection for your site. It will simply give you less performance and more headaches when something doesn't work properly. If you have two security solutions and something gets blocked when it shouldn't, which one caused it? Good luck figuring this out – it's very difficult and requires a lot of experience. If you ask for my support and I see that you have multiple security extensions I will ultimately decline to provide any assistance as I can't know which security solution is causing this issue. Therefore I can not guarantee the quality of my reply or ensure that I'm not wasting your time trying to figure out another developer's bug/feature.

I took the decision to decline support when other security solutions are installed almost a year ago, when I was faced with dozens of angry support requests and "bug reports" about alleged issues with the backend of the site. As you may have noticed, Admin Tools never filters back-end requests. It's protection stops the moment you are logged into your site's backend. It so happened that at that point in time a competitive product added a feature which would stupidly block back-end requests for logged in Super Administrators with a "403 - Access Denied" message. Having wasted so many hours trying to understand how somebody else's software works and proving that I'm not an elephant I've decided to just not bother with those situations any more.

The term "virus scanner" is grossly misleading for several reasons.

The most obvious reason is that the very definition of a computer virus doesn't fit by any stretch of imagination to the way PHP works. As a result there can be no such thing as a "PHP virus". This is marketing hype.

The second reason is that a virus scanner uses signatures and heuristics to analyse binary code. Since we are talking about source code, the term "virus scanner" is merely marketing hype. It's like calling a bottled water dispenser an "advanced dissemination device of self-contained personalised rations of performance enhancing mineral-enriched hydrogen oxide". Sounds cool, but it's definitely not.

So, what is it? It's simply some code which scans PHP files against some predefined signatures of potentially malicious code structures. The same thing we have in PHP File Change Scanner to calculate the "Threat Level" (which, too, is marketing hype for saying "a number which should show you how likely is a file to be malicious code").

I resisted the urge to call it a "virus scanner" because I don't like giving fancy names to dull things to make me sound smart. I prefer to write smart code and give it a dull name instead.

Please remember that no PHP-based software can scan for what you have in mind when you are thinking "virus", i.e. a virus or malware which can infect a Windows computer. As with all files downloaded from the Internet, your users should use a commercial virus scanner application to scan them before opening them.

ClamAV is a binary, not a PHP script. Sure you can do that, but it's not a universal solution unless you have the user make sure that ClamAV is installed properly on their server, path set up in the component and make sure that PHP can actually execute shell commands. Regarding the latter, I consider it a security hole and I'd rather forbid that. Besides, you should really limit the kind of files your users can upload. Don't allow them to upload files with executable code. No antivirus is 100% correct. If you promise your visitors that files from your site are virus free you will be lying to them.