|
|
|
date: Thu, 4 May 2006 19:43:01 -0700,
group: microsoft.public.platformsdk.internet.server.isapi-dev
back
Re: Web filter
What you are describing is a process called "Authorization". It is a basic
concept that can be implemented in many, many ways. Some may already be
coded so you do not need to write a program.
For Authorization, you have to figure out how to:
1. Identify user principle
2. Describe Authorized actions on a Resource
3. Associate User Principles to Authorized actions on a Resource
For example, one way to filter your web pages could be to:
1. Enable authentication so that you can identify the remote user principle
2. Set or revoke READ NTFS ACLs on the resources named by the URLs, based on
user principle
The ACLs deny read access to user principles so they cannot read the
forbidden URLs.
Please describe what you are really trying to accomplish. At this point,
your question is too vague.
--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Fabianmo" wrote in message
news:95F0649E-6AFF-4978-8188-A557A95C2574@microsoft.com...
> Is there any way that I can filter the web pages that a PC can have access
> to, thus making a "web filter" from VC++ 6.0. What I want to do is a
> program
> that serves as a Web filter, no matter which program the user operates in
> order to do so (this is, the user can operate Internet Explorer, or other
> browser) but the Web filter denies the access to a list of "forbidden"
> URLs
> and, lets access to the rest of the URLs not listed in that "forbidden URL
> list"?
>
> Thank you very much.
>
date: Thu, 4 May 2006 20:52:29 -0700
author: David Wang [Msft]
Re: Web filter
Thank you for your response.
What I'm trying to do is a program that does the following:
When the program is ON (loaded into memory), the user can only have access
to the authorized URL list of web pages (stored in one archive, local or
remote to the PC), and deny access to the non-authorized URL list (stored on
a second archive, local or remote to the PC). The access of the user is vía
Internet Explorer or some other web browser. I intend to do this without
enabling the content manager provided in Internet Explorer, since it can't be
changed automatically by a batch process. In case you know how to change the
content manager list in Internet Explorer by a batch process, it can be very
useful.
When the program is OFF, the user can have normal (unrestricted) URL access
via Internet Explorer or other web browser.
If there is any other doubt, I can promptly explain to you.
"David Wang [Msft]" wrote:
> What you are describing is a process called "Authorization". It is a basic
> concept that can be implemented in many, many ways. Some may already be
> coded so you do not need to write a program.
>
> For Authorization, you have to figure out how to:
> 1. Identify user principle
> 2. Describe Authorized actions on a Resource
> 3. Associate User Principles to Authorized actions on a Resource
>
> For example, one way to filter your web pages could be to:
> 1. Enable authentication so that you can identify the remote user principle
> 2. Set or revoke READ NTFS ACLs on the resources named by the URLs, based on
> user principle
>
> The ACLs deny read access to user principles so they cannot read the
> forbidden URLs.
>
> Please describe what you are really trying to accomplish. At this point,
> your question is too vague.
>
> --
> //David
> IIS
> http://blogs.msdn.com/David.Wang
> This posting is provided "AS IS" with no warranties, and confers no rights.
> //
>
> "Fabianmo" wrote in message
> news:95F0649E-6AFF-4978-8188-A557A95C2574@microsoft.com...
> > Is there any way that I can filter the web pages that a PC can have access
> > to, thus making a "web filter" from VC++ 6.0. What I want to do is a
> > program
> > that serves as a Web filter, no matter which program the user operates in
> > order to do so (this is, the user can operate Internet Explorer, or other
> > browser) but the Web filter denies the access to a list of "forbidden"
> > URLs
> > and, lets access to the rest of the URLs not listed in that "forbidden URL
> > list"?
> >
> > Thank you very much.
> >
>
>
>
date: Thu, 4 May 2006 21:23:01 -0700
author: Fabianmo
Re: Web filter
Read the incoming URL, determine if it is authorized/non-authorized, and
allow/deny appropriately.
Read my blog entries on ISAPI as well as sample ISAPI Filter source code for
relevant info on what you are trying to do. All the code and information are
there, just not stitched together in the logic you need.
--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Fabianmo" wrote in message
news:6417C071-5465-41E6-BCED-75E9584145F7@microsoft.com...
> Thank you for your response.
>
> What I'm trying to do is a program that does the following:
>
> When the program is ON (loaded into memory), the user can only have access
> to the authorized URL list of web pages (stored in one archive, local or
> remote to the PC), and deny access to the non-authorized URL list (stored
> on
> a second archive, local or remote to the PC). The access of the user is
> vía
> Internet Explorer or some other web browser. I intend to do this without
> enabling the content manager provided in Internet Explorer, since it can't
> be
> changed automatically by a batch process. In case you know how to change
> the
> content manager list in Internet Explorer by a batch process, it can be
> very
> useful.
>
> When the program is OFF, the user can have normal (unrestricted) URL
> access
> via Internet Explorer or other web browser.
>
> If there is any other doubt, I can promptly explain to you.
>
> "David Wang [Msft]" wrote:
>
>> What you are describing is a process called "Authorization". It is a
>> basic
>> concept that can be implemented in many, many ways. Some may already be
>> coded so you do not need to write a program.
>>
>> For Authorization, you have to figure out how to:
>> 1. Identify user principle
>> 2. Describe Authorized actions on a Resource
>> 3. Associate User Principles to Authorized actions on a Resource
>>
>> For example, one way to filter your web pages could be to:
>> 1. Enable authentication so that you can identify the remote user
>> principle
>> 2. Set or revoke READ NTFS ACLs on the resources named by the URLs, based
>> on
>> user principle
>>
>> The ACLs deny read access to user principles so they cannot read the
>> forbidden URLs.
>>
>> Please describe what you are really trying to accomplish. At this point,
>> your question is too vague.
>>
>> --
>> //David
>> IIS
>> http://blogs.msdn.com/David.Wang
>> This posting is provided "AS IS" with no warranties, and confers no
>> rights.
>> //
>>
>> "Fabianmo" wrote in message
>> news:95F0649E-6AFF-4978-8188-A557A95C2574@microsoft.com...
>> > Is there any way that I can filter the web pages that a PC can have
>> > access
>> > to, thus making a "web filter" from VC++ 6.0. What I want to do is a
>> > program
>> > that serves as a Web filter, no matter which program the user operates
>> > in
>> > order to do so (this is, the user can operate Internet Explorer, or
>> > other
>> > browser) but the Web filter denies the access to a list of "forbidden"
>> > URLs
>> > and, lets access to the rest of the URLs not listed in that "forbidden
>> > URL
>> > list"?
>> >
>> > Thank you very much.
>> >
>>
>>
>>
date: Sat, 6 May 2006 03:38:33 -0700
author: David Wang [Msft]
|
|
