In WinRoute you can also block certain features contained in HTML pages.
To define content global filtering rules go to the Content Rules tab in the Configuration / Content Filtering/ HTTP Policy section. Special settings for individual pages can be defined in URL Rules section (refer to chapter 6.1).
These parameters also apply to HTTP traffic of computers from which no user is connected. Special settings are used for users connected through the firewall (see chapter 9.1).
- Allow HTML ActiveX objects
Microsoft ActiveX features (security defects during implementation of this technology allow the execution of applications on client hosts, apart from other features).
- Allow HTML Script tags
HTML <script> tags — commands of programming languages, such as JavaScript, VBScript, etc.
- Allow HTML JavaScript pop-up windows
New browser windows are opened automatically — usually commercial pop-up windows.
The window.open() method will be blocked in all scripts by WinRoute unless this option is active.
- Allow HTML Java applets
HTML <applet> tags (Java Applet)
- Allow inter-domain referrer
A Referrer item included in an HTTP header.
This item includes the URL of the page opened prior to the currently opened page. If the Allow inter-domain referrer is off, Referrer items that include a server name different from the current HTTP request will be blocked.
The Cross-domain referrer function protects users' privacy (the Referrer item can be monitored to see which pages are opened by each user).
Note: Settings in the Content Rules tab are applied on unauthenticated users. Each authenticated user can customize filtering rules at the user preferences page (see chapter 7.3). However, users that are not allowed to override WWW content rules (refer to chapter 9.1) cannot permit HTML features that are denied globally.