Most anti-virus software causes a dramatic increase in disk IO and CPU Usage and Atlassian has recommended to limit virus scanning to certain directories

However, some organisations still dictate that virus scanner must be enabled.

The Hidden Risk

Apart from the performance overheads, some virus scanners delete the infected attachments silently in the backend after the file has been successfully uploaded.

The users will only realise after clicking on the link to download the attachments, which turns out to be a broken link.

The system admins will spend precious time to trace the issue and try to retrieve the deleted files from the backup archives.

This lack of feedback causes a risk that files with important information are lost forever.


When user tries to download the attachment, they will get the following errors.

The following error will be logged in the log file.

2019-06-04 15:46:10,914 WARN [conversion-thread-0-internal] [atlassian.confluence.pages.DefaultAttachmentManager] getAttachmentData Could not find data for attachment: Attachment: v.1 (5180376) angela - /opt/confluence-home/attachments/ver003/191/58/5308441/117/180/5180367/5180376/1 (Operation not permitted)

How the Attachment Checker helps

On-access Scanner is enabled

On-access Scanner is disabled