Trend Micro has a suite of products, one of which will do this for you. It provides SMTP filtering, Web content filtering, In-line email scanning, Server Protect software, and client-side virus scanning/update. It was not too bad money-wise. hth. ----- Original Message ----- From: "Luc GAUTHIER" <luc.gauthier@xxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Thursday, August 09, 2001 9:14 AM Subject: [isalist] Re: ActiveX objects http://www.ISAserver.org Hello M. Harrison, thank you for your answer. I have actually found a way to block the downloading of a .cab file embedded into an <object> tag by doing the following : 1) In 'Policy Elements'/'Content Groups', I created a group named 'ActiveX' with these content types: 'application/octet-stream' and '.cab' 2) In 'Access Policy'/'Site and Content Rules', I created a rule denying HTTP content access based on the group created in step 1. This procedure indeed blocks the downloading of the .cab. But it will unfortunately not, of course, block the instantiation of the ActiveX if it is already installed. This is where automatically replacing <object> to something like <objec!> in the source code before actually sending it to the client would come to hand. And this is exactly what we would need now ! So I guess we'll have to wait for that 'wonderfully-generous and talented C++ programmer' !! Have a good day ! --------------------- Luc Gauthier Equipe Plate-forme iProgress 32 rue Victor Hugo F - 92800 PUTEAUX Tel : +33 (0) 1 41 18 83 83 Fax : +33 (0) 1 41 18 10 60 http://www.iprogress.com mailto:luc.gauthier@xxxxxxxxxxxxx -----Message d'origine----- De : Jim Harrison [mailto:jim@xxxxxxxxxxxx] Envoyé : jeudi 9 août 2001 18:02 À : [ISAserver.org Discussion List] Objet : [isalist] Re: ActiveX objects http://www.ISAserver.org That would require some wonderfully-generous and talented C++ programmer to write a WEB proxy plug-in for ISA. Jim Harrison MCP(2K), A+, Network+, PCG ----- Original Message ----- From: "Luc GAUTHIER" <luc.gauthier@xxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Thursday, August 09, 2001 08:25 Subject: [isalist] ActiveX objects http://www.ISAserver.org Hello everyone, I just installed ISAserver and am now trying to figure out what it can do for our company. As I can see, it is possible to screen content in many different ways. But there is one thing I still haven't been able to understand or do. So I am asking this question : If a user requests a page that contains an embedded <object> tag, which installs and/or instantiates an ActiveX object, is it possible for ISAserver to remove (strip the <object> tag), modify (<object> becomes <objec!> for example) or block in any other way that ActiveX to ever be installed or instantiated ? If not, does anyone know of a plugin that could do such a job ? I've already seen that behavior from a proxy server but I wonder how to do it with ISA. Any answer will be greatly appreciated ! --------------------- Luc Gauthier Equipe Plate-forme iProgress 32 rue Victor Hugo F - 92800 PUTEAUX Tel : +33 (0) 1 41 18 83 83 Fax : +33 (0) 1 41 18 10 60 http://www.iprogress.com mailto:luc.gauthier@xxxxxxxxxxxxx ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: luc.gauthier@xxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: thor@xxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')