Hi all, You might be aware of LANguard for ISA server, which is a plugin doing content filtering, file checking and virus scanning on anything passing through the ISA server proxy. LANguard for ISA server will also be able to block & verify JAVA and ActiveX applets in a new revision due out in about a month. This revision will also include the ability to check ActiveX applets against a revocation list, meaning that it can block ActiveX/JAVA applets which have a valid certificate, but which certificate has been revoked by the CA. For example the certificate issued by Verisign in the name of Microsoft recently ... Kind Regards Sandro Gauci Security Engineer http://www.gfi.com -----Original Message----- From: Luc GAUTHIER [mailto:luc.gauthier@xxxxxxxxxxxxx] Sent: Thursday, August 09, 2001 5:25 PM To: [ISAserver.org Discussion List] Subject: [isalist] ActiveX objects http://www.ISAserver.org Hello everyone, I just installed ISAserver and am now trying to figure out what it can do for our company. As I can see, it is possible to screen content in many different ways. But there is one thing I still haven't been able to understand or do. So I am asking this question : If a user requests a page that contains an embedded <object> tag, which installs and/or instantiates an ActiveX object, is it possible for ISAserver to remove (strip the <object> tag), modify (<object> becomes <objec!> for example) or block in any other way that ActiveX to ever be installed or instantiated ? If not, does anyone know of a plugin that could do such a job ? I've already seen that behavior from a proxy server but I wonder how to do it with ISA. Any answer will be greatly appreciated ! --------------------- Luc Gauthier Equipe Plate-forme iProgress 32 rue Victor Hugo F - 92800 PUTEAUX Tel : +33 (0) 1 41 18 83 83 Fax : +33 (0) 1 41 18 10 60 http://www.iprogress.com mailto:luc.gauthier@xxxxxxxxxxxxx ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: sandro@xxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') GFI - Security & communications products for Windows NT/2000 http://www.gfi.com ********************************************************** This mail was content checked for malicious code or viruses by Mail essentials. Mail essentials for Exchange/SMTP is an email security, content checking & anti-virus gateway that removes all types of email-borne threats before they can affect your email users. Spam, viruses, dangerous attachments & offensive content can be removed before they reach your mail server. In addition it has server-based email encryption, disclaimers and other email features. *********************************************************** In addition to Mail essentials, GFI also produces the FAXmaker fax server product range & LANguard internet access control & intrusion detection. For more information on our products please visit http://www.gfi.com