Re: ActiveX objects
- From: Thor@xxxxxxxxxxxxxxx
- To: isalist@xxxxxxxxxxxxx
- Date: Thu, 9 Aug 2001 09:33:00 -0700
Trend Micro has a suite of products, one of which will do this for you. It
provides SMTP filtering, Web content filtering, In-line email scanning,
Server Protect software, and client-side virus scanning/update. It was not
too bad money-wise.
hth.
----- Original Message -----
From: "Luc GAUTHIER" <luc.gauthier@xxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, August 09, 2001 9:14 AM
Subject: [isalist] Re: ActiveX objects
http://www.ISAserver.org
Hello M. Harrison,
thank you for your answer.
I have actually found a way to block the downloading of a .cab file embedded
into an <object> tag by doing the following :
1) In 'Policy Elements'/'Content Groups', I created a group named 'ActiveX'
with these content types: 'application/octet-stream' and '.cab'
2) In 'Access Policy'/'Site and Content Rules', I created a rule denying
HTTP content access based on the group created in step 1.
This procedure indeed blocks the downloading of the .cab.
But it will unfortunately not, of course, block the instantiation of the
ActiveX if it is already installed.
This is where automatically replacing <object> to something like <objec!> in
the source code before actually sending it to the client would come to hand.
And this is exactly what we would need now !
So I guess we'll have to wait for that 'wonderfully-generous and talented
C++ programmer' !!
Have a good day !
---------------------
Luc Gauthier
Equipe Plate-forme
iProgress
32 rue Victor Hugo
F - 92800 PUTEAUX
Tel : +33 (0) 1 41 18 83 83
Fax : +33 (0) 1 41 18 10 60
http://www.iprogress.com
mailto:luc.gauthier@xxxxxxxxxxxxx
-----Message d'origine-----
De : Jim Harrison [mailto:jim@xxxxxxxxxxxx]
Envoyé : jeudi 9 août 2001 18:02
À : [ISAserver.org Discussion List]
Objet : [isalist] Re: ActiveX objects
http://www.ISAserver.org
That would require some wonderfully-generous and talented C++ programmer to
write a WEB proxy plug-in for ISA.
Jim Harrison
MCP(2K), A+, Network+, PCG
----- Original Message -----
From: "Luc GAUTHIER" <luc.gauthier@xxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, August 09, 2001 08:25
Subject: [isalist] ActiveX objects
http://www.ISAserver.org
Hello everyone,
I just installed ISAserver and am now trying to figure out what it can do
for our company.
As I can see, it is possible to screen content in many different ways.
But there is one thing I still haven't been able to understand or do. So I
am asking this question :
If a user requests a page that contains an embedded <object> tag, which
installs and/or instantiates an ActiveX object, is it possible for ISAserver
to remove (strip the <object> tag), modify (<object> becomes <objec!> for
example) or block in any other way that ActiveX to ever be installed or
instantiated ? If not, does anyone know of a plugin that could do such a job
?
I've already seen that behavior from a proxy server but I wonder how to do
it with ISA.
Any answer will be greatly appreciated !
---------------------
Luc Gauthier
Equipe Plate-forme
iProgress
32 rue Victor Hugo
F - 92800 PUTEAUX
Tel : +33 (0) 1 41 18 83 83
Fax : +33 (0) 1 41 18 10 60
http://www.iprogress.com
mailto:luc.gauthier@xxxxxxxxxxxxx
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
luc.gauthier@xxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
thor@xxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
