推荐安装Xoops Protector is a module to defend XOOPS2 from various and malicious attacks.
This module can protect four kind of attacks like:
- DoS
- SQL Injection
- XSS
- System global variable pollution
Xoops Protector defends you XOOPS from these attacks, and it records into its log.
Please install it as well as a usual module.
Turn "Protector block" on and put the block top of left side by blocks admin.
Turn the block's permission on to all groups by groups admin.
You can do that easily by using Blocks&Groups Admin of Protector.
I strongly recommend calling this module from mainfile.php also.
After Xoops Protector is installed, edit your mainfile.php like this:
define('XOOPS_GROUP_ADMIN', '1');
define('XOOPS_GROUP_USERS', '2');
define('XOOPS_GROUP_ANONYMOUS', '3');
if(is_readable(XOOPS_ROOT_PATH . '/modules/protector/include/precheck.inc.php')){
include( XOOPS_ROOT_PATH . '/modules/protector/include/precheck.inc.php' ) ;
}
if (!isset($xoopsOption['nocommon'])) {
include XOOPS_ROOT_PATH."/include/common.php";
}
Insert a line just before the line of
if (!isset($xoopsOption['nocommon'])) {
Both pre-check and block-check are needed.