PHP Firewall is a small free PHP script, but secure all websites writen in PHP.
Last version 1.0.3
PHP Firewall required PHP 5.
PHP Firewall doesn't use any database, but flatfile system.
It's very small, very simple, really easy to install and fastest.
PHP Firewall have is own logs system and email alert.
No .htaccess file required for betters performances
Security listing
* XSS protection
* UNION SQL Injection protection
* Bads bots protection
* Bads requests methods protection
* Small DOS protection
* Inclusion files protection
* Santy and others worms protection
* Server Protection
* URL Query protection
* Cookies sanitize
* Post vars sanitize
* Get vars sanitize
* IPs range reserved denied
* IPs range spam denied
* IPs protected
* Unset globals PHP var
***
PHP Firewall install in your website
* Upload the folder php-firewall/
* put the php-firewall/logs.txt in writable chmod
* Open the main file ( index.php for example ) and add these lines juste after the < ?php
***
PHP Firewall configuration
You can active or deactive most protections in PHP Firewall.
All the parameters are between the lines 23 and 39
** true = active
** false = deactive
Скачать|Download
Last version 1.0.3
PHP Firewall required PHP 5.
PHP Firewall doesn't use any database, but flatfile system.
It's very small, very simple, really easy to install and fastest.
PHP Firewall have is own logs system and email alert.
No .htaccess file required for betters performances
Security listing
* XSS protection
* UNION SQL Injection protection
* Bads bots protection
* Bads requests methods protection
* Small DOS protection
* Inclusion files protection
* Santy and others worms protection
* Server Protection
* URL Query protection
* Cookies sanitize
* Post vars sanitize
* Get vars sanitize
* IPs range reserved denied
* IPs range spam denied
* IPs protected
* Unset globals PHP var
***
PHP Firewall install in your website
* Upload the folder php-firewall/
* put the php-firewall/logs.txt in writable chmod
* Open the main file ( index.php for example ) and add these lines juste after the < ?php
Код:
define('PHP_FIREWALL_REQUEST_URI', strip_tags( $_SERVER['REQUEST_URI'] ) );
define('PHP_FIREWALL_ACTIVATION', true );
if ( is_file( @dirname(__FILE__).'/php-firewall/firewall.php' ) )
include_once( @dirname(__FILE__).'/php-firewall/firewall.php' );
Код:
if you want deactive the PHP Firewall, edit this line:
define('PHP_FIREWALL_ACTIVATION', false );***
PHP Firewall configuration
You can active or deactive most protections in PHP Firewall.
Код:
Open the php-firewall/firewall.phpAll the parameters are between the lines 23 and 39
** true = active
** false = deactive
Код:
define('PHP_FIREWALL_ADMIN_MAIL', '' ); // write your email, php firewall mail you each attack detected
define('PHP_FIREWALL_PUSH_MAIL', false ); // active email rapport true or false deactive
define('PHP_FIREWALL_LOG_FILE', 'logs' ); // filename logs for php firewall
define('PHP_FIREWALL_PROTECTION_RANGE_IP_DENY', true ); // IPs reserved blocker
define('PHP_FIREWALL_PROTECTION_RANGE_IP_SPAM', true ); // IPs spam blocker
define('PHP_FIREWALL_PROTECTION_URL', true ); // URL protection
define('PHP_FIREWALL_PROTECTION_REQUEST_SERVER', true ); // Request protection
define('PHP_FIREWALL_PROTECTION_SANTY', true ); // Santy worm protection
define('PHP_FIREWALL_PROTECTION_BOTS', true ); // Bad bots protection
define('PHP_FIREWALL_PROTECTION_REQUEST_METHOD', true ); // Bad method protection
define('PHP_FIREWALL_PROTECTION_DOS', true ); // Mini dos protection
define('PHP_FIREWALL_PROTECTION_UNION_SQL', true ); // Union sql protection
define('PHP_FIREWALL_PROTECTION_CLICK_ATTACK', true ); // Include files protection
define('PHP_FIREWALL_PROTECTION_XSS_ATTACK', true ); // XSS protection
define('PHP_FIREWALL_PROTECTION_COOKIES', true ); // sanitize cookies
define('PHP_FIREWALL_PROTECTION_POST', true ); // Sanitize POST vars
define('PHP_FIREWALL_PROTECTION_GET', true ); // sanitize GET vars