Introduction

Integration of PHPIDS into Textpattern

Details

Installation:

1. Download latest version of the plugin and the IDS.zip file Download
2. Unzip the file IDS.zip into 'IDS' subfolder of your Textpattern installation root directory.
3. Login into admin panel, install the plugin. When you do that, a new subtab of Extensiones, named PHPIDS, will appear.
4. On PHPIDS subtab, use 'Create tables' link for running the process to create necessary tables for logging dangerous requests.
5. Run this demo request:

http://url_to_your_site/?id=1<script>alert('hello')</script>

If PHPIDS is on, you must recieve an 500 error (internal server error) from your page. The information about this 'attack' will be displayed on PHPIDS subtab on admin panel. For more information about PHPIDS configuration you must go to it's official Website: PHPIDS

Enjoy!!

Changelog

• 0.2.6 Adapted to work with PHPIDS v0.7

PHPIDS v0.7 includes several modifications. One of these is a new field, 'ip2', on intrusions table. You can adapt your database with: ALTER TABLE intrusions ADD ip2 VARCHAR( 15 ) NOT NULL AFTER ip

• 0.2.5 Fixed bugs on update function: previous check for existance of curl's functions.

Fixed problems into navigation of phpids detections page. Adjust the configuration variables on system tables and on administration panel. The options of what should be analyzed by PHPIDS are moved to database and they are showed on administration panel.

• 0.2.4 Check for new PHPIDS updates
• 0.2.3 Control over random fields on the comments form.
• 0.2.2 Online update from official website of filters file (default_filter.xml) and Converter.php from oficial website.
• 0.2.1 Modification on intrussions table.

TO-DO

• Add pagination selector at table's foot
• Use PHP Quick Profiler???