= SUMMARY =

Xoops Protector is a module to defend XOOPS2 from various and malicious attacks.

This module can protect four kind of attacks like:

- DoS
- SQL Injection
- XSS
- System global variable pollution

Xoops Protector defends you XOOPS from these attacks, and it records into its log. 

Of course, all vulnerablities can't be prevented.
Be not overconfident, please.

However, I [color=ff0000][b]strongly[/b][/color] recommend installing this module to all XOOPS sites with any versions.



= RELATION to AntiDoS-P =

The antecedent of Xoops Protector was AntiDoS-P.

Since all functions of AntiDoS-P has been succeeded in Xoops Protector, you'd better to uninstall AntiDoS-P.



= USAGE =

Please install it as well as a usual module. 

Turn "Protector block" on and put the block top of left side by blocks admin.
Turn the block's permission on to all groups by groups admin.
You can do that easily by using Blocks&Groups Admin of Protector.


I strongly recommend calling this module from mainfile.php also.
After Xoops Protector is installed, edit your mainfile.php like this:
[code]
	define('XOOPS_GROUP_ADMIN', '1');
	define('XOOPS_GROUP_USERS', '2');
	define('XOOPS_GROUP_ANONYMOUS', '3');

	include( XOOPS_ROOT_PATH . '/modules/protector/include/precheck.inc.php' ) ;

	if (!isset($xoopsOption['nocommon'])) {
		include XOOPS_ROOT_PATH."/include/common.php";
	}
[/code]
Insert a line just before the line of 
	if (!isset($xoopsOption['nocommon'])) {

Both pre-check and block-check are needed.

When you turn this on, you have to check if your IP is included in
"Enter IP addresses that should be banned from the site".

Unfortunately you are banned by some troubles, access

http://(your xoops)/modules/protector/admin/rescue.php

Beforehand to use this feature, you have to set the password in preferences of XoopsProtector.



= CHANGES = 

2.22 (2005/1/4)
 - fixed a typo in check_dos_attack_* (thx Mithrandir)
 - modified with REQUEST_URI for IIS

2.21 (2004/12/31)
 - fixed a missing pattern with contami checking (thx onokazu)

2.20 (2004/12/27)
 - fixed a missing pattern with contami checking (thx JM2)
 - fixed typo missing global for HTTP_*_VARS
 - added logging doubtful file spec
 - updated Brazilian Portuguese & Spanish language files (thx Marcelo Yuji Himoro)
 - updated traditional Chinese language files (thx Kikuchi)

2.20RC3 (2004/12/18)
 - added "Patch doubtful file specifications" (thx JM2)
 - added Spanish language files (thx Marcelo Yuji Himoro)

2.20RC2 (2004/12/16)
 - updated myblocksadmin (0.12) & mymenu (0.06)
 - modified Brazilian Portuguese language files (thx Marcelo Yuji Himoro)

2.20RC (2004/12/15)
 - modified to use $_GET or $_POST instead of $HTTP_*_VARS (for PHP5)
 - added a feature to rescue
 - added to store user_agent
 - modified Anti-DoS routine radically
 - added each settings of "F5 attacks" and "high load crawlers"
 - fixed not to "Force intval" against array
 - modified a pattern finding UNION

2.11 (2004/9/30)
 - fixed some typos

2.10a (2004/9/27)
 - modified Brazilian Portuguese language files (thx Marcelo Yuji Himoro)

2.10 (2004/9/22)
 - added checker to uploaded files
 - added security advisory
 - modified as selectable whether sanitizing or not against SQL Injections
 - fixed short tags (thx t_miyabi)
 - added traditional Chinese language files (thx Kikuchi)

2.01 (2004/9/11)
 - added some checks of contamination to some super globals
 - modified Brazilian Portuguese language files (thx Marcelo Yuji Himoro)

2.0  (2004/9/10)
 - The 1st release as Xoops Protector.


= THANKS =
 - Cold Beer  (Spanish language files for AntiDoS-P)
 - Kikuchi  (Traditional Chinese language files)
 - Marcelo Yuji Himoro (Brazilian Portuguese language files)

Moreover, I thank to JM2 and minahito about having taught me kindly.
You are very great programmers!



p.s.

If you've created or modified language files for this module, contact to me.
I will register it in Protector archive.


-------------------------------------------------------
(For Japanese)

׻

Xoops Protector ϡXOOPS2 ͡ʰդ빶⤫뤿Υ⥸塼Ǥ

Υ⥸塼ɤǽΤ빶ϡʲΣǤ

- DoS
- SQL Injection
- XSS
- ƥ॰Хѿ

ι⤫餢ʤXOOPSꡢ˵Ͽޤ

Υ⥸塼ϤޤǡŪɸ椷Ԥޤ
3rdѡƥ⥸塼˸褦ʷΰɤ뤫⤷ޤ󤬡٤ƤηɤΤǤϤʤ΅϶ʪǤ

θ³ϾΤξǡ٤ƤXOOPS桼Фơ󥹥ȡ[color=ff0000][b][/b][/color]ᤷޤ



AntiDoS-P Ȥδط

Υ⥸塼ȤϡAntiDoS-P Ȥ̾ǤǤDoSкǤϤʤʤäƤ뤳ȡɤŪ˽ľȤ顢 Xoops Protector ̾դƤޤ

ޤ⥸塼ȤƤΩƤޤAntiDoS-P εǽϤ٤ Xoops Protector ѤǤޤΤǡAntiDoS-P ϥ󥤥󥹥ȡʤ뤳Ȥ򤪤ᤷޤ



ˡ

̾Υ⥸塼Ʊͤ˥󥹥ȡ뤷Ʋ

֥å롼״ǡProtector ֥å֥åΰ־̤ͥ0ˤɽ褦ˤƤ
Ʊβ̤ǡ٤ƤΥ桼˥֥å¤ꤷƲ

դ빶ɸ椷Сmainfile.php ƤӽФ褦ˤ뤳Ȥɬ׾Ǥ

Xoops Protector 򥤥󥹥ȡ塢ȤXOOPS mainfile.php ΰֲΤ
[code]
	define('XOOPS_GROUP_ADMIN', '1');
	define('XOOPS_GROUP_USERS', '2');
	define('XOOPS_GROUP_ANONYMOUS', '3');

	include( XOOPS_ROOT_PATH . '/modules/protector/include/precheck.inc.php' ) ;

	if (!isset($xoopsOption['nocommon'])) {
		include XOOPS_ROOT_PATH."/include/common.php";
	}
[/code]
ȡɲäƲ
	if (!isset($xoopsOption['nocommon'])) {
ȤԤľݥȤǤ

ʤmainfile.php 뤳ȤɲäΤϡޤǻåǤŬڤʽΤˡ֥åǤɽ褦ˤƲ


դ빶ԤäƤ褦IP򺣸³Ūӽ뤿ˤϡ
֥ƥ->ְ->ְ->IPݡ
ONˤɬפޤ

̾ϡΥ⥸塼򥤥󥹥ȡ뤹ǡONˤʤޤ󥹥ȡ뤷ƤOFFΤޤޤä硢εIPˡȤΥ饤ȥޥ󤬺ܤäƤޤäƤǽޤ

IPݡפѰդONˤˡȤΥ饤ȥޥIP򡢵IPäƲ

⤷ʤ餫ͳǡʬȤIPݥꥹȤ˺ܤäƤޤä硢

http://(your xoops)/modules/protector/admin/rescue.php

˥ơProtectorΰǻꤷѥɤϤ뤳ȤǡŪˡIPݵǽOFFˤǤޤ

餫ᤳΥѥɤꤷƤʤȡΥ쥹塼ǽ̵ˤʤޤΤǡղ



ѹ

2.22 (2005/1/4)
 - check_dos_attack_* ˤtypo (thx Mithrandir)
 - IISREQUEST_URIǤʤȤؤб

2.21 (2004/12/31)
 - ѿΥåϳ콤 (thx onokazu)

2.20 (2004/12/27)
 - ѿΥåϳ콤(thx JM2)
 - HTTP_*_VARS global˺콤
 - ե̤Ͽ褦ˤ
 - ֥饸ݥȥ졦ڥե򹹿 (thx Marcelo Yuji Himoro)
 - ե򹹿 (thx Kikuchi)

2.20RC3 (2004/12/18)
 - ֵ路եػߤץץɲ (thx JM2)
 - ڥեɲ (thx Marcelo Yuji Himoro)

2.20RC2 (2004/12/16)
 - updated myblocksadmin (0.12) & mymenu (0.06)
 - ֥饸ݥȥե򹹿 (thx Marcelo Yuji Himoro)

2.20RC (2004/12/15)
 - HTTP_*_VARSѻ (PHP5)
 - 쥹塼ǽɲ
 - Ȥ⵭Ͽ褦ѹ
 - Anti-DoSΥ롼ޤޤ񴹤
 - F5å顼ޤ٤󥸥ǡ줾ʬ
 - intvalФƤԤƤޤäƤΤ
 - UNIONȯѥȴäΤ

2.11 (2004/9/30)
 - typo ĤäΤǽ

2.10a (2004/9/27)
 - ֥饸ݥȥե򹹿 (thx Marcelo Yuji Himoro)

2.10 (2004/9/22)
 - åץɥեγĥҥåɲ
 - SQL InjectionߤΥ˥ǽȤ
 - ƥɤɲ
 - 2սꤢä short tag ٤ (thx t_miyabi)
 - եɲ (thx Kikuchi)

2.01 (2004/9/11)
 - ѿå­ʤäΤɲ
 - ֥饸Υݥȥե򹹿 (thx Marcelo Yuji Himoro)

2.0  (2004/9/10)
 - Xoops Protector ȤƤκǽΥ꡼



ռ
 - Kikuchi (ե)
 - Marcelo Yuji Himoro (֥饸Υݥȥ졦ڥե)

ޤΥ⥸塼ˤꡢ͡ʤƳڥ򤤤JM2󤪤minahitoˡ괶դޤ






------------------------------------------------------------

GIJ=CHECKMATE <gij@peak.ne.jp>   aka GIJOE in jp.xoops.org
2004

PEAK XOOPS  http://www.peak.ne.jp/xoops/

