HTTP Anti-Virus Proxy

Official HAVP Support Forum
Registration disabled, I'm tired of spambots. E-mail if you have questions.
HAVP project is pretty much frozen/abandoned at this time anyway.

All times are UTC + 2 hours [ DST ]

Post new topic Reply to topic  [ 3 posts ] 
Author Message
PostPosted: 08 Mar 2010 11:14 

Joined: 23 Apr 2008 09:36
Posts: 101
Hi ap_de and welcome to havp forum!

your questions:
a) block executable files is possible by squid self in beeing a little bit more restrictive on acl settings
take a look at description for multimedia blocking and create instead of multimedia file types your own file extension list

b) havp self is not able to scan https/ssl connection, cause of point to point encryption, but there is a way for example by apache and mod_proxy to let handle apache the encrypted requests. But this is quite more complicated
there is an instruction to do so:


PostPosted: 08 Mar 2010 12:13 
HAVP Developer

Joined: 27 Feb 2006 18:12
Posts: 687
Location: Finland
If you really REALLY want to block ALL executables, you could use a ClamAV signature like this:

Create file disallow.ndb or so in signature directory, containing line:

This will also match any executable in archives.

PostPosted: 18 Jun 2010 18:48 

Joined: 18 Jun 2010 01:32
Posts: 3
We're working on doing the https part of this as well using a custom sslproxy with dynamic certificate generation. This requires having a private CA loaded into all web browsers in the corporate network or you get invalid certifiate warnings.

I'll post more as we work through it.

Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 

All times are UTC + 2 hours [ DST ]

Who is online

Users browsing this forum: Google [Bot] and 2 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group