[CORE-937] PHPIDS: Add option to disable checks for authenticated admins - Blesta

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 3.0.0
Fix Version/s: None
Component/s: Plugins
Labels:
None

Description

Currently requests are processed for every URI and every user. There should be an option to disable processing intrusion rules on authenticated admin user requests (enabled by default of fresh installation).

This will prevent PHPIDS from flagging false positives that are the result of an legitimate admin user's actions (the most common form of false positive).

Activity

Hide

Permalink

Paul Phillips added a comment - 08/Sep/14 6:26 PM

With this task and CORE-723 both completed, it may be possible for us to ship with PHPIDS enabled by default, with conservative enough settings to limit the risk of false positives and still catch many legitimate attacks. Having PHPIDS enabled by default would be great.

Show

Paul Phillips added a comment - 08/Sep/14 6:26 PM With this task and CORE-723 both completed, it may be possible for us to ship with PHPIDS enabled by default, with conservative enough settings to limit the risk of false positives and still catch many legitimate attacks. Having PHPIDS enabled by default would be great.

People

Assignee:

Cody Phillips (Inactive)

Reporter:

Cody Phillips (Inactive)

Votes:

0 Vote for this issue

Watchers:

2 Start watching this issue

Dates

Created:

17/Dec/13 12:56 PM

Updated:

06/Jan/15 11:32 AM

Agile

View on Board