URL Paths
I mainly use the URL Paths function of the HTTP Proxy for blocking file extensions. Here is a list of extension that I deny:
*.acf
*.ade
*.adp
*.ani
*.arj
*.bas
*.bat
*.cab
*.chm
*.class
*.cmd
*.clp
*.cpl
*.cur
*.dat
*.dcr
*.dif
*.fav
*.hhk
*.hhp
*.hlp
*.ht
*.hta
*.htt
*.htx
*.hqx
*.idc
*.inf
*.ins
*.isp
*.jar
*.jav
*.java
*.job
*.lnk
*.m3u
*.mad
*.maf
*.mam
*.maq
*.mar
*.mat
*.mcw
*.mda
*.mdb
*.mde
*.mdn
*.mdt
*.mdv
*.mdw
*.mht
*.mnd
*.mp3
*.mpc
*.msi
*.msp
*.mst
*.nws
*.odc
*.ofn
*.ogg
*.pbk
*.pcd
*.pif
*.pip
*.pls
*.pot
*.ppa
*.ppz
*.pwz
*.ra
*.ram
*.rar
*.rat
*.reg
*.rjs
*.rm
*.rmm
*.rmp
*.rmx
*.rpm
*.scf
*.scr
*.sct
*.shs
*.slk
*.smil
*.tar
*.url
*.vb
*.vbd
*.vbe
*.vbx
*.vxd
*.wab
*.wiz
*.wma
*.wsc
*.wsf
*.wsh
*.wsz
*.zip
Notice that the file extension *.com is missing. I hope you can guess why.
You can also use the URL Path function for some more advanced filtering. I use it to prevent my users from turning off the safe search for google image search.
Rule name: Google_images_Safe_Search_Off
Pattern match: images.google.*/*safe=off*
*.acf
*.ade
*.adp
*.ani
*.arj
*.bas
*.bat
*.cab
*.chm
*.class
*.cmd
*.clp
*.cpl
*.cur
*.dat
*.dcr
*.dif
*.fav
*.hhk
*.hhp
*.hlp
*.ht
*.hta
*.htt
*.htx
*.hqx
*.idc
*.inf
*.ins
*.isp
*.jar
*.jav
*.java
*.job
*.lnk
*.m3u
*.mad
*.maf
*.mam
*.maq
*.mar
*.mat
*.mcw
*.mda
*.mdb
*.mde
*.mdn
*.mdt
*.mdv
*.mdw
*.mht
*.mnd
*.mp3
*.mpc
*.msi
*.msp
*.mst
*.nws
*.odc
*.ofn
*.ogg
*.pbk
*.pcd
*.pif
*.pip
*.pls
*.pot
*.ppa
*.ppz
*.pwz
*.ra
*.ram
*.rar
*.rat
*.reg
*.rjs
*.rm
*.rmm
*.rmp
*.rmx
*.rpm
*.scf
*.scr
*.sct
*.shs
*.slk
*.smil
*.tar
*.url
*.vb
*.vbd
*.vbe
*.vbx
*.vxd
*.wab
*.wiz
*.wma
*.wsc
*.wsf
*.wsh
*.wsz
*.zip
Notice that the file extension *.com is missing. I hope you can guess why.
You can also use the URL Path function for some more advanced filtering. I use it to prevent my users from turning off the safe search for google image search.
Rule name: Google_images_Safe_Search_Off
Pattern match: images.google.*/*safe=off*
posted by Placebo at 1:47 PM
7 Comments:
You can put *.com in the URL Paths. You need to enter it as [/*.com]
I use the /*.x convention on all my extension blocking. This helps prevent them from wildcarding some other part of a complex url.
IS there a way to do bulk import your definitions? it will take a while to key them in one by one.
thanks great site.
anonymous...I'm afraid not.
--WG
by the way, some of you might find the following URL useful, which provides a nice list of unsafe file extensions and a few regex rules at the end.
http://www.ncl.ac.uk/iss/email/mailscanrules.html
--WGT
Hi,
The list provided here is for the sites or the subdirectories within the site.
I mean
if i enter *.pif in URL paths
Which will be denied access
www.google.com/www.pif or google.pif
so using this way can i allow all users to brows internet but no body cannot download any thing ,or tell me how to do it
When I came to know about Pass4sure WatchGuard dumps I was a bit doubtful or confused because of so many other dumps providers in the field. Then I downloaded free demo questions to check the validity of the material and I found it really exceptional and highly useful. I say thanks for free version that motivated me and obviously for Pass4sure WatchGuard exam dumps that made my way to success easy.
Post a Comment
<< Home