PHPIDS was added in Tiki10 but removed in Tiki11. Expose IDS was added to Tiki17.
- If you have a dedicated server, you can install ClearOS and use
There are also solutions for other Operating systems
Todo:
Soon
- By default, it should be activated but only for logging
- Later, we can add protection by default
- Add more options to the admin panel
- Thresholds in admin panel
- Logging to Tiki database
- Send alert emails
- Display a warning page
- Display ban template and message
- Ban user when attack is over the ban threshold
- Configure PHPIDS exceptions
- Have something like http://moinmo.in/SurgeProtection
Later
- Make sure performance is OK
Questions
- Since we don't have Smarty, should we get something like http://weblab.megafon.ru/histone/en/ or http://bolt80.com/piecrust/ ?
Composer & Packagist
- https://packagist.org/packages/phpids/phpids
- https://github.com/PHPIDS/PHPIDS/blob/master/composer.json
Related discussions
- http://thread.gmane.org/gmane.comp.cms.tiki.devel/26068/
- http://thread.gmane.org/gmane.comp.cms.tiki.devel/27782
- http://thread.gmane.org/gmane.comp.cms.tiki.devel/28270
Related links
- http://phpids.org/
- https://github.com/PHPIDS/PHPIDS/issues
- https://github.com/PHPIDS/PHPIDS/commits/master
- http://drupal.org/node/1726730#comment-6361210
- https://code.google.com/p/phpids-for-modx/
- http://www.h-online.com/security/features/Getting-started-with-the-PHPIDS-intrusion-detection-system-746233.html
- https://github.com/enygma/expose
- https://packagist.org/packages/enygma/expose
- https://www.awnage.com/2014/01/06/ids-showdown-phpids-vs-expose/