Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-937

PHPIDS: Add option to disable checks for authenticated admins

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 3.0.0
    • Fix Version/s: None
    • Component/s: Plugins
    • Labels:
      None

      Description

      Currently requests are processed for every URI and every user. There should be an option to disable processing intrusion rules on authenticated admin user requests (enabled by default of fresh installation).

      This will prevent PHPIDS from flagging false positives that are the result of an legitimate admin user's actions (the most common form of false positive).

        Activity

          People

          • Assignee:
            cody Cody Phillips (Inactive)
            Reporter:
            cody Cody Phillips (Inactive)
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated: