Module 
Repository
Admin Tools Communication E-commerce Entertainment Image Galleries Miscellaneous Navigation Project Management Statistics Useful Blocks
Repository is developed by The SmartFactory (http://www.smartfactory.ca), a division of InBox Solutions (http://www.inboxsolutions.net)
Module Repository > Admin Tools > Security > Xoops Protector

Security

Security

Xoops Protector



Description:

= SUMMARY =

Xoops Protector is a module to defend XOOPS2 from various and malicious attacks.

This module can protect four kind of attacks like:

- DoS
- SQL Injection
- XSS
- System global variable pollution

Xoops Protector defends you XOOPS from these attacks, and it records into its log.

Of course, all vulnerablities can't be prevented.
Be not overconfident, please.

However, I strongly recommend installing this module to all XOOPS sites with any versions.



= RELATION to AntiDoS-P =

The antecedent of Xoops Protector was AntiDoS-P.

Since all functions of AntiDoS-P has been succeeded in Xoops Protector, you'd better to uninstall AntiDoS-P.



= USAGE =

Please install it as well as a usual module.

Turn "Protector block" on and put the block top of left side by blocks admin.
Turn the block's permission on to all groups by groups admin.
You can do that easily by using Blocks&Groups Admin of Protector.


I strongly recommend calling this module from mainfile.php also.
After Xoops Protector is installed, edit your mainfile.php like this:
define('XOOPS_GROUP_ADMIN''1');
    define('XOOPS_GROUP_USERS''2');
    define('XOOPS_GROUP_ANONYMOUS''3');

    include( XOOPS_ROOT_PATH '/modules/protector/include/precheck.inc.php' ) ;

    if (!isset($xoopsOption['nocommon'])) {
        include XOOPS_ROOT_PATH."/inc";
    }

Insert a line just before the line of
if (!isset($xoopsOption['nocommon'])) {

Both pre-check and block-check are needed.

When you turn this on, you have to check if your IP is included in
"Enter IP addresses that should be banned from the site".

Unfortunately you are banned by some troubles, access

http://(your xoops)/modules/protector/admin/rescue.php

Beforehand to use this feature, you have to set the password in preferences of XoopsProtector.
Features:
  • Security
  • XSS
  • DoS
  • exploit

System Requirements:

    Download History:
    2.20 (2004/12/27) - fixed typo missing POST cheking (Important!) (thx JM2) - fixed typo missing global for HTTP_*_VARS - added logging doubtful file spec - updated Brazilian Portuguese & Spanish language files (thx Marcelo Yuji Himoro) - updated traditional Chinese language files (thx Kikuchi) 2.20RC3 (2004/12/18) - added "Patch doubtful file specifications" (thx JM2) - added Spanish language files (thx Marcelo Yuji Himoro) 2.20RC2 (2004/12/16) - updated myblocksadmin (0.12) & mymenu (0.06) - modified Brazilian Portuguese language files (thx Marcelo Yuji Himoro) 2.20RC (2004/12/15) - modified to use $_GET or $_POST instead of $HTTP_*_VARS (for PHP5) - added a feature to rescue - added to store user_agent - modified Anti-DoS routine radically - added each settings of "F5 attacks" and "high load crawlers" - fixed not to "Force intval" against array - modified a pattern finding UNION 2.11 (2004/9/30) - fixed some typos 2.10a (2004/9/27) - modified Brazilian Portuguese language files (thx Marcelo Yuji Himoro) 2.10 (2004/9/22) - added checker to uploaded files - added security advisory - modified as selectable whether sanitizing or not against SQL Injections - fixed short tags (thx t_miyabi) - added traditional Chinese language files (thx Kikuchi) 2.01 (2004/9/11) - added some checks of contamination to some super globals - modified Brazilian Portuguese language files (thx Marcelo Yuji Himoro) 2.0 (2004/9/10) - The 1st release as Xoops Protector. Version: 2.21 Updated: Sun, 02-Jan-2005 - fixed a missing pattern with contami checking (thx onokazu)
    Submitter: GIJOE
    Publisher: GIJOE
    Released: 2004/12/29

    Version: 3.40
    Release Status: 
    Downloads: 15780
    File Size: 54.72 Kb
    Home Page: PEAK XOOPS

    Rating:   (10 Votes)

    Reviews:  (1)

    Mirrors Available: 0

    Download Times:
    Modem(56k) : 9s
    ISDN(64k) : 8s
    DSL(768k) : 0.65s
    LAN(10M) : 0.05s
     
    Price: Free | Platform: 2.0.x | License: Sun Solaris Source Code (Foundation Release) License (v. 1.1) | Limitations: None

    XOOPS Web Application System User Reviews

    Other files by: GIJOE
    xhld (2004/11/22)

    Xoops Protector © copyright 2025 https://xoops.org

    The comments are owned by the author. We aren't responsible for their content.

    Login

    Register now!  |  Lost Password?

    Search

    Advanced Search

    Top Module Downloads

    Who's Online

    179 user(s) are online (7 user(s) are browsing Module Repository)

    Members: 0

    Guests: 179

    more...

    Donat-O-Meter

    Stats
    Goal: AU$15.00
    Due Date: Apr 30
    Gross Amount: AU$0.00
    Net Balance: AU$0.00
    Left to go: AU$15.00
    Make donations with PayPal!