Hi there,
i'm looking for some kind of http-content-filter to avoid having malicious jscript/activex-stuff delivered to local clients browsing the web. Does anyone know an appropiate open source solution?
Try dansguardian @ http://www.dansguardian.org/. Look for http://blacklist.dansguardian.org/ to get latest blacklists of banned servers. Edit /etc/dansguardian/bannedextensionlist to ban scripts with common extensions. To let the admin make Updates for Software allow access from internal to unfiltered proxy and filtered proxy (common 3128/8080). To ban mimetypes edit /etc/dansguardian/bannedmimetypelist. The /etc/dansguardian/bannedphraselist is no good solution, because even links to shit.gif filter the whole page, if the word shit is banned. Decide to block content (on fqdn/hostname basis) with the blackist and/or only extension blocking. Here you have the option to block content with /etc/dansguardian/bannedsitelist (e.g. block porn, games, chat for workers). For that purpose you need to download the blacklist (see above). I tested multiple filters and found out dansguardian is the fastest solution for me and maybe others, too. Philippe Fast solution: /etc/dansguardian/