Home
Protector is a security module for XoopsCube Legacy (XCL) that provides comprehensive protection against various types of web attacks.
It's designed to secure your XCL website from malicious activities and enhance overall security.
Protector uses a system of security filters to protect against common attacks:
- SQL Injection Protection: Prevents attackers from manipulating your database through malicious SQL queries
- XSS (Cross-Site Scripting) Protection: Blocks attempts to inject malicious JavaScript code
- CSRF (Cross-Site Request Forgery) Protection: Validates form submissions to ensure they come from legitimate sources
- DoS (Denial of Service) Protection: Limits excessive requests to prevent server overload
- Directory Traversal Protection: Prevents unauthorized access to files outside the web root
- Null Byte Attack Protection: Blocks attempts to use null characters to bypass security checks
- Bad IP Blocking: Automatically blocks IP addresses that attempt malicious actions
- IP Ban Management: Administrative interface to manage banned IPs
- Whitelist Support: Allows trusted IPs to bypass certain security checks
The module includes a secure web proxy feature that allows:
- Fetching external content through your server
- Sanitizing external content before displaying it
- Caching external content for improved performance
- Plugin system for extending proxy functionality
- Alerts administrators about security threats
- Configurable notification levels
- Email notifications for critical security events
- Comprehensive logging of security events
- Dashboard with security statistics
- Threat intelligence integration
The module provides several administrative interfaces:
- Dashboard: Overview of security status and recent events
- IP Ban Management: Tools to manage blocked IP addresses
- Logs: Detailed logs of security events
- Proxy Settings: Configuration for the web proxy feature
- Proxy Plugins: Management of proxy extension plugins
Protector works by:
- Loading early in the request lifecycle through a preload mechanism
- Filtering all incoming requests for malicious patterns
- Monitoring database queries for SQL injection attempts
- Applying security headers to responses
- Logging suspicious activities
The module is designed to be lightweight while providing robust protection, with minimal impact on site performance.
Protector integrates deeply with XoopsCube Legacy through:
- Preload hooks for early request processing
- Database layer integration for SQL filtering
- Admin menu integration for easy access to security tools
- Notification system integration for alerts
This tight integration ensures comprehensive protection across all aspects of your XoopsCube Legacy site.