This is no longer maintained, I keep the page for historical purposes only.
PHP IDS is an intrusion detection system for the application layer, written in PHP.
Intrusion detection at the application layer, for web apps, means scanning request and trying to detect things like xss, sql injection, header injection, etc. Other measures are obviously still needed (a proper IDS, firewall, host level security outside of the web server, etc).
wp-phpids is a wordpress plugin, based on the one written by schoash. This version includes a very primitive administrative menu, which allows the wordpress admin to:
- Setup a threshold for the admin login page,
- Setup a threshold for the public pages,
- Setup a redirect url, in case the thresholds are exceeded and
- Update the default filters and the Converter.php files from the svn repository
Here’s the plugin’s tarball:
It’s ready to test in wordpress, I’ve done so in version 2.6.1, but it might work in slightly older ones.
It’s not ready for distribution yet, since it’s still missing some basic installation checks (i.e., it’ll fail miserably if there’s a plugin with the same name, which might be your case if you where using schoash’s plugin). I’ll keep working on this and updating this page accordingly.
I’m also not sure of the licensing terms. All my projects are GPL, but I don’t have any info from the original plugin. It might be GPL (it’s the usual license for WP plugins) or public domain, since it was a blog post. I’ll adjust the final license of my version accordingly.