Enabling Content modifier section on SafeSquid User Interface

Access the SafeSquid interface

Go to Configure Page

Go to Real time content security

Go to Content modifier section

Global

Enabled

Enable or Disable this section.

• TRUE : Enable content rewriting.
• FALSE : Disable content rewriting.

Rewriting Policies

List of regular expression substitutions to apply to matching files.

Enabled

Enable or Disable this Entry.

• TRUE : Enable this Entry.
• FALSE : Disable this Entry.

Comment

For documentation, and future references, explainthe relevance of this entry with your policies.

That is, by reading the policies, a future user can understand the purpose of that entry.

Profiles

Specify the Profiles applicable for this entry.

This entry will be applicable only if the connection has any one of the specified profiles.

Leave it Blank, to apply for all connections irrespective of any applied profile.

To avoid application to a connection that has a profile, use negated profile (!profile).

Mime type

Specify regular expression matching the MIME-type's for which this entry is applicable.

According to their nature and format, MIME-type is a way of identifying files on the Internet.

It is highly advisable that you set this to some mime-type; otherwise all files will be checked.

Example: text/html, ^image/, ^application/, application/x-shockwave-flash.

Pattern

A regular expression pattern matching the area of text inside the file, 'to modify'.

This may be trailed with a '/' followed by flag characters like in Perl to modify options used to compile the regular expression, and must be if a '/' is used anywhere else in the regular expression.

Replace

Specify the replacement text to use in place of the area of text matching the pattern mentioned in the above field.

It may contain back references to strings captured using parenthesis in the pattern.

Applies to

This option is to select what the rewrite entry applies to.

• BODY : Rewrite the body of the webpage or file.
• CLIENT : Rewrite the client header, this happens before Middleaman parses it so be careful not to remove any headers needed to handle the request properly.
• SERVER : Rewrite the header from the remote web server, same conditions from client header apply.
• POST : Rewrite POST/PUT data sent when submitting a form or uploading a file.

Example

Rule#1

I want to modify title tag of webpages which will indicate that it has been this webpage is inspected by SafeSquid.

This rule is to be applied to every connection.

To ensure the title tag is modified the chunked response needs to buffered.

Using regex (Regular Expression) we can use pattern matching to select the title tag of webpages.

Replace with the title tag Inspected by SafeSquid.

Rule#2

We want to request PNG images instead of AVIF from remote server.

AVIF images and ignore by SafeSquid’s image analyzer.

Using regex (Regular Expression) we can use pattern matching to select the header request sent from client to SafeSquid.

Modify the header response and request for PNG image instead of AVIF

Rule#3

We want to request jpg images instead of WEBP from remote server.

WEBP images and ignore by SafeSquid’s image analyzer.

Using regex (Regular Expression) we can use pattern matching to select the header request sent from client to SafeSquid.

Modify the header response and request for JPG image instead of WEBP

Follow below link for more understanding

How to block particular user login to Facebook or Gmail