Using the ISA HTTP Filter To Modify Via Headers And Prevent Information Disclosure

By /

One feature that perhaps doesn’t get enough attention is the HTTP Security Filter. The HTTP Securityimage Filter is included with both ISA and TMG firewalls and can be configured on a per Web Publishing Rule  basis. The HTTP Security Filter allows you to control many aspects of the HTTP communication between the source and destination for both inbound and outbound connections.

When configuring the HTTP Security Filter for inbound connections, you can take advantage of the settings on the Headers tab. One useful implementation is to configure the Server Header and the Via Header returned by the ISA or TMG firewall.

Want to know how to do it? Then check out Richard Hicks’ blog over at

http://tmgblog.richardhicks.com/2009/03/27/using-the-isa-http-filter-to-modify-via-headers-and-prevent-information-disclosure/

and get the details.

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

image
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: [email protected]
MVP — Forefront Edge Security (ISA/TMG/IAG)

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Read Next

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top