UNTRUSTED CLIENT ACCESS

Feature Value
Type Protection
Risk -
Covered by Agent

Untrusted Client Access rule helps to track the domains being accessed from the client side, trying to prevent attacks that cause clients to call insecure third party urls

All those client side third party calls, that can be done in different ways (link, image, script, iframe, ajax or css) are tracked by Hdiv and the information is sent to the web console. In the web console all third party domains being used from the client side are gathered, so that a whitelist of valid domains can be created based on that information. Later if any illegal domain is called from the client side Hdiv could monitor or block this call.

More information

How to solve it

Activate untrusted client access protection