1
skenow
Module: Protector description
  • 2007/4/21 23:47

  • skenow

  • Home away from home

  • Posts: 993

  • Since: 2004/11/17


Modulename and version
Quote:
Protector 3.02


Short description
Quote:
Xoops Protector is a module to defend XOOPS2 from various and malicious attacks.


Detailed description
Quote:
This module can protect a various kind of attacks like:

- DoS
- Bad Crawlers (like bots collecting e-mails...)
- SQL Injection
- XSS (not all though)
- System globals pollution
- Session hi-jacking
- Null-bytes
- Directory Traversal
- Some kind of CSRF (fatal in XOOPS <= 2.0.9.2)
- Brute Force
- Camouflaged Image File Uploading (== IE Content-Type XSS)
- Executable File Uploading Attack
- XMLRPC's eval() and SQL Injection Attacks
- SPAMs for comment, trackback etc.

Xoops Protector defends you XOOPS from these attacks, and it records into its log.


Version
Quote:
3.02


Publisher
Quote:
GIJOE


Home Page
Quote:

System Requirements
Quote:
XOOPS 2.x, PHP 4.x+, MySQL 3.23+


Screenshot links
Quote:

2
Herko
Re: Module: Protector description
  • 2007/4/22 8:42

  • Herko

  • XOOPS is my life!

  • Posts: 4238

  • Since: 2002/2/4 1


skenow wrote, and I cleaned it up just a bit (less technical talk, XOOPS all caps, some minor language corrections).

Modulename and version
Quote:
Protector 3.02


Short description
Quote:
XOOPS Protector is a module to defend your XOOPS2 powered website from various malicious attacks. In the event of an attempt to attack your website, Protector blocks the attack and the attacker.

PLEASE NOTE: The level of security of your website depends on the quality of the scripts used as much as the configuration of the webserver the website is hosted on. Protector adds an extra security layer to the XOOPS scripts.


Detailed description
Quote:
This module can protect a various kind of attacks like:

- DoS (Denial of Service)
- Bad Crawlers (like bots collecting e-mails...)
- SQL Injection
- XSS (Cross Site Scripting -not all though)
- System globals pollution
- Session hi-jacking
- Null-bytes
- Directory Traversal
- Various methods of CSRF (Cross SIte Request Forgery -fatal in XOOPS <= 2.0.9.2)
- Brute Force multiple login attacks
- Camouflaged Image File Uploading (== IE Content-Type XSS)
- Executable File Uploading Attack
- XML-RPC's eval() and SQL Injection Attacks
- SPAMs for comment, trackback etc.

XOOPS Protector defends your XOOPS 2.x poewered website from these attacks, and records them in its log.


Version
Quote:
3.02


Publisher
Quote:
GIJOE


Home Page
Quote:

System Requirements
Quote:
XOOPS 2.x, PHP 4.x+, MySQL 3.23+


Screenshot links
Quote:

3
MadFish
Re: Module: Protector description
  • 2007/4/22 14:45

  • MadFish

  • Friend of XOOPS

  • Posts: 1056

  • Since: 2003/9/27


I suggest adding one more sentence to the last paragraph in the long description:

Quote:
Protector also evaluates your site for certain vulnerabilities and providing warnings about them through a ‘security advisory’ page, and provides instructions on how to fix them.

4
skenow
Re: Module: Protector description
  • 2007/4/22 15:00

  • skenow

  • Home away from home

  • Posts: 993

  • Since: 2004/11/17


Correcting some spelling, added sentence from MadFish ...

Quote:

Herko Coomans wrote:
skenow wrote, and I cleaned it up just a bit (less technical talk, XOOPS all caps, some minor language corrections).

Modulename and version
Quote:
Protector 3.02


Short description
Quote:
XOOPS Protector is a module to defend your XOOPS2 powered website from various malicious attacks. In the event of an attempt to attack your website, Protector blocks the attack and the attacker.

PLEASE NOTE: The level of security of your website depends on the quality of the scripts used as much as the configuration of the webserver the website is hosted on. Protector adds an extra security layer to the XOOPS scripts.


Detailed description
Quote:
This module can protect a various kind of attacks like:

- DoS (Denial of Service)
- Bad Crawlers (like bots collecting e-mails...)
- SQL Injection
- XSS (Cross Site Scripting - not all though)
- System globals pollution
- Session hi-jacking
- Null-bytes
- Directory Traversal
- Various methods of CSRF (Cross Site Request Forgery - fatal in XOOPS <= 2.0.9.2)
- Brute Force multiple login attacks
- Camouflaged Image File Uploading (== IE Content-Type XSS)
- Executable File Uploading Attack
- XML-RPC's eval() and SQL Injection Attacks
- SPAMs for comment, trackback etc.

XOOPS Protector defends your XOOPS 2.x powered website from these attacks, and records them in its log. Protector also evaluates your site for certain vulnerabilities and providing warnings about them through a ‘security advisory’ page, and provides instructions on how to fix them.


Version
Quote:
3.02


Publisher
Quote:
GIJOE


Home Page
Quote:

System Requirements
Quote:
XOOPS 2.x, PHP 4.x+, MySQL 3.23+


Screenshot links
Quote:

Login

Who's Online

206 user(s) are online (116 user(s) are browsing Support Forums)


Members: 0


Guests: 206


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits