| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[FW-1] URI resource definition
We are using CVP to scan for http outgoing request. I notice there are
problems no matter how I define the URL resources. Following are things that
I went through and welcome any suggestion:
1. Define the URI Match = Wild Cards and under the match tag, I set the
Host=* Query=* and
Path=*.{arj,cab,class,com,do?,exe,gz,jar,js,lzh,ocx,rar,tar,txt,vbs,xl?,z,zi
p}. The problem is that all files can get through including those are
infected. If I shorten the
Path=*.{arj,cab,class,com,do?,exe,gz,jar,lzh,ocx,rar,tar,vbs,xl?,z,zip},
then the file types are scanned. Looks like there is a limit on the length
of the Path field. Anyone knows what is the limit?
2. I tried to set Path=*, any some web site are not accessible, example are
http://ca.finance.yahoo.com/ and google's search site. What ever you
submitted to search yields a page not accessible error. Bypass the HTTP
security server and all pages are OK. What is wrong with in.ahttpd?
3. Define the URI Match = File, the file format only allow ip address of the
site and doesn't seems to work with wildcards. Is it possible to specify
wild card in the URI specification file?
Any pointer will be appreciated.
Ken
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
