Skip to Content
author's profile photo Former Member
Former Member

how to configure VSI for XSS

hi here.

have a question.

We was configured VSI 2.0 for SAP NW AS JAVA. Got this windows and understand - all work, VSI successfully detect EICAR test virus.


Anybody can help - how we can start(reconfigure) VSI for he start detecting simple XSS.

thank you.

Add a comment
10|10000 characters needed characters exceeded

Related questions

1 Answer

  • Best Answer
    Posted on Jul 14, 2016 at 02:04 PM

    Hi Baji,

    NW-VSI can help you detect XSS in files, so for instance Javascript embedded in an HTML file that's being uploaded (or other file formats vulnerable to XSS, think SVG for example).

    Your virus scanning solution hooked up with VSI should detect and block such files if you configure the virus scan profile to include the settings to block active content (CUST_ACTIVECONTENT = 1)

    If you would like to block XSS in Webforms, then VSI (Virus Scanning Interface) will not help you. For that, you will actually need a solution that plugs into the CSI (Content Scanning Interface).

    I'll be happy to share more details on that. Pls contact me directly for that as I don't want to go off-topic here.

    Best

    Joerg

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.