PHPIDS
!!! Attention please !!!
Please use currently max. PHP-IDS package 0.6.2. Newer versions currently doesn't work with drupal phpids module. Will be fixed with 6.x-1.10.
HTML / JSON / excluded fields introduced with 6.x-1.9 doesn't work with more than one inserted field/variable. In current dev-snapshot the bug is fixed. I'll release 6.x-1.10 next days.
PHPIDS module adds a security layer based on http://www.php-ids.org and is interesting if you want to know how and when (anonymous) users try to break your site by logging their attacks. It can send a mail, redirect the (anonymous) user or (not yet implemented) automatically block user/ip access after a certain level of impact has been reached. On the settings page you can choose what you want to do with anonymous and authenticated users (ignore, log, log & action).
Installation instructions are in the README.txt included in all releases. Please check phpids settings and status report after installing or upgrading phpids module
Warning: PHP5 5.1.6 or better. 5.2.x is recommended.
Example to reduce false positives (since 6.x-1.9)
To reduce false positives from PHPIDS which flood your logs, sends warning mails or block unsuspicious user activities, follow these steps to configure your PHPIDS correct.
- Pickup a false positive log-entry from Administer->Reports->Recent log entries by filtering for phpids
- Select the variable name which includes possible false values like html or json from this log entry
- Enter this variable name coma seperated into html and/or json included fields in PHPIDS admin form (Administer->Site Configuration->Logging and alerts->PHPIDS settings)
- Save your new PHPIDS settings
- Now the total impact value should be lower than before
Tested PHPIDS versions:
- PHPIDS 0.6.2
- PHPIDS 0.6.1.1
- PHPIDS 0.6
- PHPIDS 0.5.4 (very old)
Releases
| Official releases | Date | Size | Links | Status | |
|---|---|---|---|---|---|
| 6.x-1.9 | 2009-Sep-21 | 10.66 KB | Download · Release notes | Recommended for 6.x | |
| 5.x-2.0 | 2008-Mar-22 | 9.3 KB | Download · Release notes | Recommended for 5.x | |
| Development snapshots | Date | Size | Links | Status | |
|---|---|---|---|---|---|
| 6.x-1.x-dev | 2009-Oct-13 | 10.7 KB | Download · Release notes | Development snapshot | |
