[TYPO3-dev] PHPIDS and Typo3 ?
Dmitry Dulepov
dmitry.dulepov at gmail.com
Mon Apr 27 20:38:45 CEST 2009
Hi!
Marcus Krause wrote:
> And still, I would always prefer mod_security over PHPIDS:
> - compiled vs. interpreted code
> - C vs. PHP
Same here. Extra advantage: mod_security protects the whole server, not just PHP. It also protects from vulnerability scanners or content grabbers. For example, I was able to protect both my servers from the jumpUrl issue in 2 minutes by adding a mod_security rule.
--
Dmitry Dulepov
In TYPO3 blog: http://dmitry-dulepov.com/article/a-new-typo3-security-web-site.html
LinkedIn: http://www.linkedin.com/in/dmitrydulepov
Twitter: http://twitter.com/dmitryd
Skype: liels_bugs
More information about the TYPO3-dev
mailing list