Quotas in Malware Protection for S3
This section provides default quotas, often referred to as limits. Unless specified, each quota is Region-specific. To view default quotas specific to using the foundational GuardDuty service, see Amazon GuardDuty quotas.
The following tables describe the multiple quotas that will apply to your AWS account.
| Quota name | AWS default quota value | Is it adjustable? | Description |
|---|---|---|---|
|
Maximum S3 object size |
100 GB |
No |
The maximum S3 object size that GuardDuty will attempt to scan for malware. Although this quota is not adjustable, if you need to scan larger objects, contact AWS Support to determine if GuardDuty can increase the quota for your use case. |
|
Extracted archive bytes |
100 GB |
No |
The maximum amount of data that GuardDuty can extract and analyze from an archive file. GuardDuty will skip archive files extracting to more than 100 GB. |
|
Extracted archive files |
1,000 |
No |
The maximum number of files that GuardDuty can extract and analyze in an archive file. If the archive contains more than 1,000 files, then GuardDuty will have to skip the archived file. NoteCompound files types are potentially subject to these limits. The file types include, but are not limited to, Multipurpose Internet Mail Extensions (MIME) encoded email messages, Compiled Python (PYC) files, Compiled HTML Help (CHM) files, all installers, and OpenDocument Format (ODF) documents. |
|
Maximum archive depth levels |
5 |
No |
The maximum levels of nested archives that GuardDuty can extract. If the archive includes files that are nested beyond this value, then GuardDuty will skip those nested files. |
|
Maximum protected buckets |
25 |
No |
The maximum number of S3 buckets for which you can enable Malware Protection for S3. This quota limit is per account in each Region. |
