HTTP Anti-Virus Proxy

Official HAVP Support Forum
Registration disabled, I'm tired of spambots. E-mail havp@hege.li if you have questions.
HAVP project is pretty much frozen/abandoned at this time anyway.
It is currently 22 Jun 2014 09:52

All times are UTC + 2 hours [ DST ]




Post new topic Reply to topic  [ 3 posts ] 
Author Message
PostPosted: 12 Sep 2010 23:36 
Offline

Joined: 12 Sep 2010 23:12
Posts: 1
I have a free website that generates a lot of traffic. I use banner ads to help keep it free.

My problem-
I try very hard to keep my site clean and virus/adware free, but sometimes, no matter what I do certain 3rd party advertisers have been known to (every so often) inject rogue ad code into the ads that are served. I have weeded them out and bitched to a point where this almost never happens. This is great except that this hurts my revenue. I could use a bunch of different companies but I don't trust them Problem is that sometimes these "virus writers" get smart and are able to outsmart the ones that I do trust. Just on the news not too long ago a large news company had bad ads injected into their site so I know I am not alone.

What I would like to do-
Is be proactive and setup HAVP to proxy only my ads as they are loaded on a page so I can catch these things before my users are ever effected. I use iframes so I am hoping that I can have the iframes call the adserver through the proxy and scan the adcode before it gets to the user. I'm not sure this will work because the adcode is mostly javascript. Does anyone know if it will or how I could implement such a concoction?

Does anyone have any Ideas on how I could implement something like this and make it work?

Google scans sites on a regular basis and when something big hits my site and I am not aware... Google flags my site as Harmful and doesn't always let me know in a timely manner. So, if these guys can do it.... Couldn't I find something out here that someone may have written to help me?

Any and all help would be appreciated.


Thank you!
-Curtis


Top
 Profile  
 
PostPosted: 13 Sep 2010 21:09 
Offline

Joined: 23 Apr 2008 09:36
Posts: 101
Hi curtis!
Which os and webserver are you using for your site?
Is it possible, that the advertisers do a sql injection, or something like this?
I think, havp is not the right way for protecting your site, expect you have infected files on your server.
Take a look at PHP-IDS http://php-ids.org/ or something like mod_security, if you are using apache webserver.
Another thought would be a reverse proxy, to protect your site.

regards


Top
 Profile  
 
PostPosted: 18 Jan 2011 13:28 
Offline

Joined: 18 Jan 2011 13:23
Posts: 1
I suggest you Linux operating system and Weblogic server to guard your site.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 

All times are UTC + 2 hours [ DST ]


Who is online

Users browsing this forum: Google [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group