[isalist] Re: Deny .exe DL working, but IE7.0 is allowed?

• From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
• To: "isalist" <isalist@xxxxxxxxxxxxx>
• Date: Thu, 19 Oct 2006 12:17:40 -0700

http://www.ISAserver.org
-------------------------------------------------------
  
That's not how "executable" content is defined.
This is HTTP; not the file system.
ISA only knows "executable" by the headers which are delivered by the
server.
HTTP "headers" have absolutely nothing to do with the actual file
content.

-----Original Message-----
From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx]
On Behalf Of Edgardo Balansay
Sent: Thursday, October 19, 2006 11:30 AM
To: isalist
Subject: [isalist] Deny .exe DL working, but IE7.0 is allowed?

http://www.ISAserver.org
-------------------------------------------------------
  
Hello,

Wondering if anyone else is able to download IE 7.0 (non beta) from:

http://www.microsoft.com/windows/ie/downloads/default.mspx

Clicking the download link which apparently is:
http://switch.atdmt.com/action/IE_7_Windows_XP_SP2_B

*Despite* having:
"Block responses containing Windows executable content" applied in the
HTTP Filter rule?

Our users although not 'administrative' users are able to download this
executable but not other .exe/executable files.  Is my ISA config off,
or IE 7.0 just special =).

We did not block by extension .exe, as IIRC, the "Block responses
containing Windows..." should suffice?  As each .exe has the 'header'
PE?

The logs show that IE7.0 is downloading via the very rule with the
'Block responses containing...' checked.

Thanks again,
Edgardo
------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server Articles and Tutorials:
http://www.isaserver.org/articles_tutorials/
ISA Server Blogs: http://blogs.isaserver.org/
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
Report abuse to listadmin@xxxxxxxxxxxxx 


All mail to and from this domain is GFI-scanned.

------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/  
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp 
ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/ 
ISA Server Blogs: http://blogs.isaserver.org/ 
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com 
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp 
Report abuse to listadmin@xxxxxxxxxxxxx 

• References:
  • [isalist] Deny .exe DL working, but IE7.0 is allowed?
    • From: Edgardo Balansay

Other related posts:

• » [isalist] Deny .exe DL working, but IE7.0 is allowed?
• » [isalist] Re: Deny .exe DL working, but IE7.0 is allowed?

1. Home
2. isalist
3. Archive
4. 10-2006

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---