Wednesday, March 18, 2009

ISA Server 2004 2006 Block Script Injection

To block a script injection we will use 2 signatures.

First Signature;

Right Click to your Access Rule and Choose "Configure HTTP". Choose signature tab from the new window.

Click Add Button. Enter the New Signatuer name (it can be whatever you want) . Choose "Request URL" from Signature Search Criteria.

In the signature part type "<" (except quotas). Click OK and Apply.

Second Signature;

Open signature tab again. Fill the parts same as the first signature except signature part. This time write ">" (Except Quotas). Click OK and Apply.

No comments:

Post a Comment

span.fullpost {display:inline;}