Linux 软件免费装

WP-Sentinel

开发者 evilsocket
更新时间 2012年2月3日 19:57
捐献地址: 去捐款
PHP版本: 2.8 及以上
WordPress版本: 3.3.1

标签

security safe protection hack sql injection hacker exploit ips csrf guard xss rfi ids hackers flood local file inclusion remote file inclusion sqli bruteforcing cross site request forgery cross site scripting lfi

下载

1.0.7 1.0.7.1 1.0.7.2 1.0.7.3 1.0.8 1.0.8.1 1.0.8.2 1.0.8.3 1.0.9 1.1.0 1.1.0.1 1.2.0 1.3.0 2.0 2.0.1 2.0.2 2.0.3 1.0 1.0.1 1.0.2 1.0.3 1.0.4 1.0.5 1.0.6 1.0.6.1

详情介绍:

WP-Sentinel, is a plugin for the WordPress platform which will increase the security of your blog against attacks from crackers, lamers, black hats, h4x0rs, etc . The plugin will be loaded by wordpress before every other installed plugin and will execute some security checks upon incoming http requests and, when one of more requests turn on the system alarm, they will be blocked, the sentinel then will show a warning message to the user and send a notification email to the blog administrator with the whole attack details. Furthermore wp-sentinel will communicate with a centralized server to collect attackers data and build a ip address blacklist. This plugin is able to block those kind of attacks : WP-Sentinel will NOT check requests from the user logged in as administrator, so if you want to check the installation you have to log out first.

安装:

  1. Upload wp-sentinel folder to the /wp-content/plugins/ directory.
  2. Activate the plugin through the 'Plugins' menu in WordPress.
  3. Configure the plugin through the settings panel.

升级注意事项:

1.0.9 Important upgrade, implemented ip banning. 1.0.6 MySQL enabled with local caching. 1.0.1 See changelog. 1.0 Well, this is just the first release :)

常见问题:

How can i check if the plugin is installed and working properly?

If you are logged in as administrator, perform a logout, go to the index of your blog and open an url such as : http://your-blog-url/?s=../../this/is/just/a/test To activate the local file inclusion block for instance.

Some bot is launching an high number of attacks to my blog, will the plugin be flooded with logs?

No, the plugin has an anti-flood mechanism that can be configured through the settings menu.

更新日志:

2.0.3 2.0.2 2.0.1 2.0.0 1.3.0 1.2.0 1.1.0 1.0.9 1.0.8.3 1.0.8.2 1.0.8.1 1.0.8 1.0.7.3 1.0.7.2 1.0.7.1 1.0.7 1.0.6.1 1.0.6 1.0.5 1.0.4 1.0.3 1.0.2 1.0.1 1.0