Web access protection works by monitoring communication between web browsers and remote servers to protect you from online threats, and complies with HTTP (Hypertext Transfer Protocol) and HTTPS (encrypted communication) rules.
Access to web pages known to contain malicious content is blocked before content is downloaded. All other web pages are scanned by the ThreatSense scanning engine when they are loaded and blocked if malicious content is detected. Web access protection offers two levels of protection, blocking by blacklist and blocking by content.
We strongly recommend that you leave Web access protection enabled. This option can also be accessed from the main program window of ESET Server Security by navigating to Setup > Web and email > Web access protection.
Enable advanced scanning of browser scripts
By default, all JavaScript programs executed by web browsers will be checked by the detection engine.
|
Allows you to configure monitoring for these standard protocols which are used by most web browsers. By default, ESET Server Security is configured to monitor the HTTP protocol used by most web browsers.
ESET Server Security also supports HTTPS protocol checking. HTTPS communication uses an encrypted channel to transfer information between server and client. ESET Server Security checks communication utilizing the Secure Socket Layer (SSL), and Transport Layer Security (TLS) protocols. The program will only scan traffic on ports defined in Ports used by HTTPS protocol, regardless of operating system version.
Encrypted communication will be not scanned when default settings are in use. To enable the scanning of encrypted communication Advanced setup (F5) > Web and email > SSL/TLS.
|
ThreatSense parameters
Configure settings such as types of scan (emails, archives, exclusions, limits, etc.) and detection methods for Web access protection.