Web access protection works by monitoring communication between web browsers and remote servers to protect you from online threats, and complies with HTTP (Hypertext Transfer Protocol) and HTTPS (encrypted communication) rules.
Access to web pages known to contain malicious content is blocked before content is downloaded. All other webpages are scanned by the ThreatSense scanning engine when they are loaded and blocked if malicious content is detected. Web access protection offers two levels of protection, blocking by blacklist and blocking by content.
We strongly recommend that you leave Web access protection enabled. The following options are available in Advanced setup (F5) > Web and email > Web access protection:
•Basic - Lets you enable or disable Web access protection. When disabled, options below will become inactive.
|Web protocols - Allows you to configure monitoring for these standard protocols which are used by most Internet browsers.|
By default, ESET Mail Security is configured to monitor the HTTP protocol used by most Internet browsers.
In Windows Vista and later, HTTP traffic is always monitored on all ports for all applications. In Windows XP/2003, you can modify the Ports used by HTTP protocol in Advanced setup (F5) > Web and email > Web access protection > Web protocols > HTTP scanner setup. HTTP traffic is monitored on the specified ports for all applications, and on all ports for applications marked as Web and email clients.
ESET Mail Security also supports HTTPS protocol checking. HTTPS communication uses an encrypted channel to transfer information between server and client. ESET Mail Security checks communication utilizing the SSL (Secure Socket Layer), and TLS (Transport Layer Security) protocols. The program will only scan traffic on ports defined in Ports used by HTTPS protocol, regardless of operating system version.
Encrypted communication will be not scanned when default settings are in use. To enable the scanning of encrypted communication, navigate to SSL protocol checking in Advanced setup (F5), click Web and email > SSL protocol checking and select Enable SSL protocol filtering.
•URL address management - Allows you to specify HTTP addresses to block, allow or exclude from checking.
•ThreatSense parameter - Allows you to configure settings such as types of scan (emails, archives, exclusions, limits, etc.) and detection methods for Web access protection.