RE: ActiveX objects
- From: "Sandro Gauci" <sandro@xxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Fri, 10 Aug 2001 11:03:46 +0200
Hi all,
You might be aware of LANguard for ISA server, which is a plugin doing
content filtering, file checking and virus scanning on anything passing
through the ISA server proxy.
LANguard for ISA server will also be able to block & verify JAVA and
ActiveX applets in a new revision due out in about a month. This revision
will also include the ability to check ActiveX applets against a revocation
list, meaning that it can block ActiveX/JAVA applets which have a valid
certificate, but which certificate has been revoked by the CA. For example
the certificate issued by Verisign in the name of Microsoft recently ...
Kind Regards
Sandro Gauci
Security Engineer
http://www.gfi.com
-----Original Message-----
From: Luc GAUTHIER [mailto:luc.gauthier@xxxxxxxxxxxxx]
Sent: Thursday, August 09, 2001 5:25 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] ActiveX objects
http://www.ISAserver.org
Hello everyone,
I just installed ISAserver and am now trying to figure out what it can do
for our company.
As I can see, it is possible to screen content in many different ways.
But there is one thing I still haven't been able to understand or do. So I
am asking this question :
If a user requests a page that contains an embedded <object> tag, which
installs and/or instantiates an ActiveX object, is it possible for ISAserver
to remove (strip the <object> tag), modify (<object> becomes <objec!> for
example) or block in any other way that ActiveX to ever be installed or
instantiated ? If not, does anyone know of a plugin that could do such a job
?
I've already seen that behavior from a proxy server but I wonder how to do
it with ISA.
Any answer will be greatly appreciated !
---------------------
Luc Gauthier
Equipe Plate-forme
iProgress
32 rue Victor Hugo
F - 92800 PUTEAUX
Tel : +33 (0) 1 41 18 83 83
Fax : +33 (0) 1 41 18 10 60
http://www.iprogress.com
mailto:luc.gauthier@xxxxxxxxxxxxx
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
sandro@xxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
GFI - Security & communications products for Windows NT/2000
http://www.gfi.com
**********************************************************
This mail was content checked for malicious code or viruses
by Mail essentials. Mail essentials for Exchange/SMTP is an
email security, content checking & anti-virus gateway that
removes all types of email-borne threats before they can affect
your email users. Spam, viruses, dangerous attachments & offensive
content can be removed before they reach your mail server.
In addition it has server-based email encryption, disclaimers
and other email features.
***********************************************************
In addition to Mail essentials, GFI also produces the FAXmaker
fax server product range & LANguard internet access control &
intrusion detection. For more information on our products please
visit http://www.gfi.com
Other related posts:
