Ability to choose which action to take on infected files on a scheduled scan + Quarantine option

[Enygma2002]

The current default action for infected files is Delete (on scheduled scan). The upload protection will always block infected files, so that part is not covered in this issue.

It would be interesting to be able to specify in Administration, the action to take of infected files, more specifically, it would be interesting to be able to Quarantine detected infected files, instead of deleting them on the spot. One possible case where this would be useful is false positives, where a clean file would be wrongly detected as infected by the AV engine, so it would be useful to not lose it directly. Of course, this also introduces the risk that the AV was right, so care must be taken when handling quarantined files.

Implementation ideas:

• It could be some protected space (viewable only by admins) with maybe one page for each detected infected attachment (for scalability reasons, i.e. multiple pages scale, while multiple objects in a page don't), holding information like the date when it was quarantined, the original page it was attached to and maybe the user that had uploaded it. The homepage of this space could display a livetable with all these entries and 2 actions: delete or restore. The restore would move the attachment out of quarantine and back to its original document, if that doc still exists.
• The configuration UI should display a choice of the action to perform on infected files but it should only perform it for the scheduled scans. Infected files detected during upload would not be moved to quarantine, since the upload operation would still be canceled.
• The configuration UI could have a link to the Quarantine space.