Web Threat Protection

While the Web Threat Protection component is running, Kaspersky Industrial CyberSecurity for Linux Nodes scans inbound traffic, can prevent download of malicious files from the Internet and block phishing, adware, or other malicious websites. Web Threat Protection is started by default when the application starts.

The application scans HTTP, HTTPS, and FTP traffic. Also, the application scans websites and IP addresses. You can specify the network ports or network port ranges to be monitored.

To monitor HTTPS traffic, enable encrypted connection scans. To monitor FTP traffic, select the Monitor all network ports check box.

Web Threat Protection settings

Setting

Description

Enable Web Threat Protection

This check box enables or disables Web Threat Protection.

This check box is cleared by default.

Trusted web addresses

This group of settings contains the Configure button, which opens the Trusted web addresses window, where you can specify the list of trusted web addresses. The application will not scan the contents of websites whose web addresses are included in this list.

Action on threat detection

Action that the application performs on a web resource where a dangerous object is detected:

  • Block access to all dangerous objects detected in web traffic. The application displays a notification about blocked access attempts and logs information about dangerous objects.
  • Inform the user when a dangerous object is detected in web traffic (default value). Web Threat Protection allows this object to be downloaded to the computer. The application logs information about the dangerous object and adds this object to the list of active threats.

Scan settings

This group of settings contains the Configure button, which opens the Scan settings window, where you can configure the settings for scanning incoming traffic.

Page top