Re: [squid-users] Blocking gzipped HTML pages

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 8 Feb 2005 15:12:59 +0100 (CET)

On Tue, 8 Feb 2005, Paul Fiero wrote:

> I brought this up only because of a query by my peers asking about the
> possibility of people using gzipped HTML pages as a delivery vector
> for virii.

Any decent virus scanner should be able to scan gzipped HTML pages for
malicious code just as it can scan plain-text HTML pages. If your virus
scanner can not then you should look at using another virus scanner, not
blocking gzip compressed HTML in general.

> My concern with this is that we would very likely end up blocking more
> legitimate pages than we would protect ourselves against.

Fully agreed. Several major web sites is using gzip compression to save
bandwidth.

Regards
Henrik
Received on Tue Feb 08 2005 - 07:13:01 MST

This archive was generated by hypermail pre-2.1.9 : Tue Mar 01 2005 - 12:00:01 MST