This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
tomhans18
Explorer
‎2020-05-29 02:27 AM

ICAP header if file will be analysed

Hello there,

 

currently we have multiple 3rd party applications which should send files through ICAP to the SandBlast and wait for the response.

By design this is not possible. If the file is not directly denied by the SandBlast it will be handled as accepted, this is the nature of the ICAP protocol as far as I know.

Now I saw that some Sandbox providers offers the possibility to add an additional ICAP response header which informs that the file needs to be scanned and I like to know if this is possible with the SandBlast too?

This would be amazing because we could create something like a ICAP proxy to evaluate the header and send another response.

 

 

Thank you for your help.

tomhans18

Labels
0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events