I've been upgrading Protector just like any other module: copy the new files, then upgrade the module from the Module Administration page.

This hasn't caused any problems for me.

But if you encounter problems, temporarily commenting-out the added lines in mainfile.php may be necessary.

Note that if you uninstall the old version, you'll lose your settings.

Looks like you'll also have to go into the module's preferences section to make sure nothing is changed. The preferences on my upgrades all went back to the default settings.

I know that a guide is being produced, but can anyone briefly explain what kind of exploit reports this module generates, how to interpret the messages and what action to take.

I assume it foils certain types of attack, reports the incident and you then ban the IP address associated with it?

Tiny Bump
Read about another site hacking in the forum today. Would be nice to hear any tips from seasoned Protector users about using this module.

Quote:

Banning can be done automatically when an IP trips certain preset criteria. In the module preferences you'll find a bunch of settings that control how Protector behaves when it detects certain kinds of attack (or maybe better to say 'inappropriate behaviour' as it can also react against IPs that use too many resources like some crawlers or too may page reloads).

For each kind of attack you can set a protector response behavior, from a range of choices like displaying a blank screen, or automatically banning the IP etc. You can also set the level of logging for some things, I think.

In the 'protect center' page there is a list of IPs that have been banned by Protector, together with a simple description of why such as DOS, webcrawler etc. If you want to 'unban' an IP you can simply select it and press a button.

The guide is about 3/4 written but work sent me out to the boondocks for the week, so perhaps I can finish it next weekend. Anyway, won't be *too* long!

Thx MadFish. I'll sit tight.