Quotas in Malware Protection for S3 - Amazon GuardDuty

Quotas in Malware Protection for S3

This section provides default quotas, often referred to as limits. Unless specified, each quota is Region-specific. To view default quotas specific to using the foundational (or core) GuardDuty service, see Amazon GuardDuty quotas.

The following tables describe the multiple quotas that will apply to your AWS account.

Quota name AWS default quota value Is it adjustable? Description

Maximum S3 object size

5 GB

No

The maximum S3 object size that GuardDuty will attempt to scan for malware.

Extracted archive bytes

5 GB

No

The maximum amount of data (in GB) that GuardDuty can extract and analyze from an archive file. Even if an archive file contains more than 5 GB, then GuardDuty will skip the content beyond this value.

Extracted archive files

1,000

No

The maximum number of files that GuardDuty can extract and analyze in an archive file. If the archive contains more than 1,000 files, then GuardDuty will have to skip the archived file.

Note

Compound file types such as Multipurpose Internet Mail Extensions (MIME) encoded email messages, Compiled HTML Help (CHM) files, all installers, and OpenDocument Format (ODF) documents, are potentially subject to these limits.

Maximum archive depth levels

5

No

The maximum levels of nested archives that GuardDuty can extract. If the archive includes files that are nested beyond this value, then GuardDuty will skip those nested files.

Maximum protected buckets

25

No

The maximum number of S3 buckets for which you can enable Malware Protection for S3. This quota limit is per account in each Region.