Posted by cm3l1k1 on April 6, 2009 at 9:03am
Jump to:
| Project: | PHPIDS |
| Version: | 6.x-1.8-beta2 |
| Component: | Code |
| Category: | feature request |
| Priority: | normal |
| Assigned: | IT-Cru |
| Status: | closed (fixed) |
Issue Summary
Hi,
I have little problem. On our site peoples want upload source codes, but in this time PHPIDS interpret it as attack.
Can you plase make some option/bypass, that in some cases (depends on users/node type/categories) PHPIDS wouldnt work?
I know that there is option to disable PHPIDS for registered users, but it is not good solution for me/security.
Thanks a lot!
Best regards,
Martin Cmelik
Comments
#1
Hi Martin,
possible this could be a workaround for you, if your site using CCK (but I didn't try it out myself yet):
1. Create a new content type for coding entrys
2. Add a named textfield (for example: code) to this created content type
3. Restrict a allowed user group to create nodes of this content type
4. Add field_code (field is default field-prefix) to exceptions[] in PHPIDS Config.ini (find in /lib/IDS/Config)
So only a special group of users could add nodes with code to your site and other node types aren't accepted with code in it and will be rejected by PHPIDS.
I think a possible feature could be realized in version 1.9. But before this I should put a little brain activity into it ;)
I hope this could help you for the moment.
Best regards,
Steffen
#2
Hi Steffen,
I have big problems with it right now because IDS system make alert also in cases, that users paste bash scripts and so on.
Maybe I have one solution without big changes in code.
Is it possible to automatically exclude everything between <code>xxxx </code> ?
Thanks a lot man for your work on this module!!
#3
Hello,
please take a look at the new release 6.x-1.10. Now it is possible to exclude some form fields from scanning by PHPIDS.
I hope this will help you.
Greetz Gos77
#4
Closed because of no activity since over 2 months.