Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-937

PHPIDS: Add option to disable checks for authenticated admins

        Details

        • Type: Improvement
        • Status: Open
        • Priority: Major
        • Resolution: Unresolved
        • Affects Version/s: 3.0.0
        • Fix Version/s: None
        • Component/s: Plugins
        • Labels:
          None

          Description

          Currently requests are processed for every URI and every user. There should be an option to disable processing intrusion rules on authenticated admin user requests (enabled by default of fresh installation).

          This will prevent PHPIDS from flagging false positives that are the result of an legitimate admin user's actions (the most common form of false positive).

            Activity

              People

              • Assignee:
                cody Cody Phillips (Inactive)
                Reporter:
                cody Cody Phillips (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated: