官網 http://php-ids.org/

On this site you can find a collection of resources relating to PHPIDS including files, documentation, a friendly forum and a cool demo that shows off some of the best features of PHPIDS.

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session.

PHPIDS enables you to see who’s attacking your site and how and all without the tedious trawling of logfiles or searching hacker forums for your domain. Last but not least it’s licensed under the LGPL!

Greetings and stay tuned…
The PHPIDS Team

參考http://www.howtoforge.com/intrusion-detection-for-php-applications-with-phpids

引用http://newsletter.ascc.sinica.edu.tw/news/read_news.php?nid=1324

PHPIDS提供一個免費的程式碼,供Web開發人員參考,並可有效地杜絕Web的攻擊手法,同時也提供即時監控的平台,供網站管理者查閱是否受到駭客攻擊。但目前最大的缺點在於,網站下所有的php程式檔都需要加入example.php,才能將攻擊隔絕於外,且每個程式檔加入之後是否會對網站效能有所影響,也是開發人員必須考量的,有興趣的讀者,不妨下載安裝藉以加強Web的安全性。
Related posts 相關文章
線上網站壓力測試、網頁瀏覽速度測試
More...
使用google的網站測試工具測出你的網站那邊需要改進才能更快
More...
一些網頁觀查與除錯的工具
More...
網站測試工具 – HttpWatch 評估瀏覽下載所花的時間在那
More...

作者

留言

撰寫回覆或留言

發佈留言必須填寫的電子郵件地址不會公開。