Results 1 to 2 of 2
  1. #1
    Untanglit
    Join Date
    Jan 2008
    Posts
    24

    Default What mechanisms prevent drive by attacks on websites?

    I am trying to prevent drive by attacks from paid advertising on sites that may be legit like nytimes.com, but have ad content that is malicious.

    Will the IPS prevent this type of scenario, or is it more for protecting directly exposed services like Exchange/IIS?

    Otherwise is there a particular feature in UT that is directed towards blocking those types of attacks?

  2. #2
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    16,317

    Default

    In web filter you need to block the malicious category (its on by default).
    theres a bunch of other similar categories like compromised.

    It doesn't matter if its an ad "on" nyt - its hosted from its own site and its a separate http request and will be categorized invididually even though the referer may be nyt.
    Usually less legit sites see this more though.
    I get ads blocked as malicious for thepiratebay.org all the time
    f1assistance likes this.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2