Great Circle Associates Firewalls
(November 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: ActiveX and Risks
From: Rick Murphy <rick @ tis . com>
Date: Fri, 22 Nov 1996 12:57:12 -0500
To: Ken Hardy <ken @ bridge . com>
Cc: Russ . Cooper @ rc . on . ca, firewalls @ greatcircle . com 
At 11:38 AM 11/22/96 -0600, Ken Hardy wrote:
>Does it do it by modifying the tags in the HTML, or by recognizing and
>blocking the ActiveX content itself? 
By recognizing specific tags in the HTML and eliding the content between
the tags. There's no reliable way to recognize an ActiveX object itself.
(Any other approach - like the Trend Micro one - relies on the data being
formatted correctly (MIME headers) and that it be delivered using a transport
being watched. We block ActiveX applet and object tags, which *only* protects
your web browser - but that's all we say we protect. There's many other
vectors..
	-Rick
Indexed By Date Previous: RE: ActiveX and Risks
From: Ken Hardy <ken @ bridge . com>
Next: Re: Ping through firewall [was: NCSA certification]
From: mike @ ptes . com (Mike Bernhardt)
Indexed By Thread Previous: RE: ActiveX and Risks
From: Ken Hardy <ken @ bridge . com>
Next: RE: ActiveX and Risks
From: "A. Ömer Köker" <omer @ superonline . net>
Google
 
Search Internet Search www.greatcircle.com