02-01-2013 01:10 AM
NIS always checks URLs and compares them to its Safweb rating; if it has been rated as malicious it will be blocked. However, NIS does not have a HTTP scanner like some antivirus programs, so it can't scan the actual traffic for malicious code.
02-01-2013 04:25 PM
Thanks for the link; I have bookmarked it.
The suspect URL came in the body of an email and I had hitheto thought that NIS would have at least flagged it. In the past, NIS has nuked suspect emails outright but this instance suggests that the nuking was triggered by the sender's email address, not by the content. In this instance, the email address was legit but the URL was in the body of the text.