I have posted the latest version of my patches to the TIS fwtk http-gw module, that
The patches exist for both http-gw V1.4 and http-gw V2.0alpha, and can be found
The administrator can define global or per-client-host policies defining removal of
these applets from the pages as they are browsed.
In addition, this version allows the administrator to define browsers as safe for
these applets based on the User-agent: header line automatically generated by
browsers with each request.
This allows the selective admission of applet types for browser releases the
administrator deems "safe" while stripping the applets from web pages for all users
of other browser versions/releases.
ActiveX, the Microsoft extension of OLE (OCXs), will allow web pages to invoke
which is mostly independent of Java.
The code base for these context diffs is provided by Trusted Information Systems
firewall toolkit (fwtk), which can be retrieved from ftp.tis.com
The fwtk exists in both V1.3 and 2.0alpha version. The component http-gw of the fwtk
is modified by these patches to provide the screening functionality. V1.3 http-gw must
be upgraded first by the http-gw patches on ftp.tis.com, to reach the V1.4 base
level upon which I built my patch.
Carl V Claunch
Hitachi Data Systems