Re: MS ISA activeX Filtering
From: Paul Kurczaba (paul_at_myipis.com)
Date: 10/04/04
- Previous message: Casey DeBerry: "MS ISA activeX Filtering"
- In reply to: Casey DeBerry: "MS ISA activeX Filtering"
- Next in thread: Andrew van der Stock: "RE: MS ISA activeX Filtering"
- Reply: Andrew van der Stock: "RE: MS ISA activeX Filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Casey DeBerry" <cdeberry@cobizinc.com>, <focus-ms@securityfocus.com> Date: Mon, 4 Oct 2004 14:51:56 -0400
I would filter the following file extensions: cab, ocx, and dll. These are
used by ActiveX.
I don't know if ISA 2000 can block ActiveX. That would be kind of funny
though...One microsoft technology blocking another microsoft technology.
Note that if you block cab, ocx, and dll extensions, it will block the
legitimate Windows Update site as well as the Office update site.
-Paul
----- Original Message -----
From: "Casey DeBerry" <cdeberry@cobizinc.com>
To: <focus-ms@securityfocus.com>
Sent: Monday, October 04, 2004 11:41 AM
Subject: MS ISA activeX Filtering
Will MS ISA 2000 Server block ActiveX applications on its own? In other
words.. Users are unknowingly downloading the dowloader.MM trojan. My AV
Software is finding and renaming/deleting it successfully, but I would like
another layer of protection to keep the specific activeX application from
entering the enterprise.
Do I need another add-on?
Thanks,
Casey
--------------------------------------------------------------------------------------------------------------------
CONFIDENTIALITY NOTICE:
This e-mail contains confidential information and is intended only for the
individual named. If you are not the named addressee, you should not
disseminate, distribute or copy this e-mail. Please notify the sender
immediately if you have received this e-mail by mistake and delete this
e-mail from your system. E-mail cannot be guaranteed to be secure or
error-free as information could be intercepted, corrupted, lost, destroyed,
arrive late or incomplete, or contain viruses. Neither the sender nor CoBiz
Inc. and its subsidiaries accept liability for any errors or omissions in
the contents of this message, which arise as a result of e-mail
transmission.
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Previous message: Casey DeBerry: "MS ISA activeX Filtering"
- In reply to: Casey DeBerry: "MS ISA activeX Filtering"
- Next in thread: Andrew van der Stock: "RE: MS ISA activeX Filtering"
- Reply: Andrew van der Stock: "RE: MS ISA activeX Filtering"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
