Content modifier

From Secure Web Gateway

Overview

Use 'Content modifier' to remove or modify contents like AcitveX, JavaScript, Cookies from selected websites.

It enables you to modify the contents of web pages, files, the client header, and server header in real time.

Enabling Content modifier section on SafeSquid User Interface

Access the SafeSquid interface

  

Go to Configure Page

Goto configure.png
 		 

Go to Real time content security

Go to real time content security.png
  

Go to Content modifier section

ContentmodifierSlide1 (1).PNG
  

Global

Enabled

Enable or Disable this section.

  • TRUE : Enable content rewriting.
  • FALSE : Disable content rewriting.
ContentmodifierSlide1 (2).PNG
  
ContentmodifierSlide1 (3).PNG

 

 

 

 

 
ContentmodifierSlide1 (4).PNG
  

Rewriting Policies

ContentmodifierSlide1 (5).PNG
  
ContentmodifierSlide1 (6).PNG
  
Contentmodi-policy.jpg
  

List of regular expression substitutions to apply to matching files.


Enabled

Enable or Disable this Entry.

  • TRUE : Enable this Entry.
  • FALSE : Disable this Entry.

Comment

For documentation, and future references, explainthe relevance of this entry with your policies.

That is, by reading the policies, a future user can understand the purpose of that entry.

Profiles

Specify the Profiles applicable for this entry.

This entry will be applicable only if the connection has any one of the specified profiles.

Leave it Blank, to apply for all connections irrespective of any applied profile.

To avoid application to a connection that has a profile, use negated profile (!profile).

Mime type

Specify regular expression matching the MIME-type's for which this entry is applicable.

According to their nature and format, MIME-type is a way of identifying files on the Internet.

It is highly advisable that you set this to some mime-type; otherwise all files will be checked.

Example: text/html, ^image/, ^application/, application/x-shockwave-flash.

Pattern

A regular expression pattern matching the area of text inside the file, 'to modify'.

This may be trailed with a '/' followed by flag characters like in Perl to modify options used to compile the regular expression, and must be if a '/' is used anywhere else in the regular expression.

Replace

Specify the replacement text to use in place of the area of text matching the pattern mentioned in the above field.

It may contain back references to strings captured using parenthesis in the pattern.

Applies to

This option is to select what the rewrite entry applies to.

  • BODY : Rewrite the body of the webpage or file.
  • CLIENT : Rewrite the client header, this happens before Middleaman parses it so be careful not to remove any headers needed to handle the request properly.
  • SERVER : Rewrite the header from the remote web server, same conditions from client header apply.
  • POST : Rewrite POST/PUT data sent when submitting a form or uploading a file.

Example

Rule#1

I want to modify title tag of webpages which will indicate that it has been this webpage is inspected by SafeSquid.

This rule is to be applied to every connection.

To ensure the title tag is modified the chunked response needs to buffered.

Using regex (Regular Expression) we can use pattern matching to select the title tag of webpages.

Replace with the title tag Inspected by SafeSquid.

Presentation1-cntInspection.png

Rule#2

We want to request PNG & JPG images instead of AVIF & WEBP from remote server.

AVIF images and ignore by SafeSquid’s image analyzer.

Using regex (Regular Expression) we can use pattern matching to select the header request sent from client to SafeSquid.

Modify the header response and request for PNG & JPG image instead of AVIF & WEBP

Slide2-cntInspection.png
Slide3-cntInspection.png

Follow below link for more understanding

How to block particular user login to Facebook or Gmail

  
Retrieved from "https://docs.safesquid.com/index.php?title=Content_modifier&oldid=2720"