PHPIDS 0.4.3 is out of the cage
Article written by .mario
Today we proudly release PHPIDS 0.4.3. This time we invested all spare time we had the last weeks on enhancing the converter and the rules. That means way better intrusion detection and even fewer false alerts then with the last release.
Thanks to the great help from Johannes Dahse we managed to tweak the rules to catch way more SQL Injections - especially the super short ones for authentication bypass and information disclosure. And - we didn’t believe it ourselves - SirDarckCat and Gareth Heyes even found some new XSS vectors slipping through the rules. We also optimized the converter against several evil Unicode characters and other possibilities to obfuscate payload.
Furthermore we did some more testing and optimization on the PHPIDS centrifuge. After several weeks of high traffic beta testing we agreed to remove the ‘beta’-label from this module too. Be sure to grab the files from here as soon as possible 
The coming releases will head straight towards 0.5 - the usability and scalability release. We hope you are looking forward for this one as much as we do - and enjoy PHPIDS 0.4.3.
This entry was posted
on Tuesday, November 20th, 2007 at 6:05 pm and is filed under PHPIDS.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
November 21st, 2007 at 6:40 pm
[...] ich zwar noch groß ein Update von PHP IDS angepriesen, heute sieht die Welt schon anders aus: PHP IDS Version 0.4.3 ist mittlerweile online. Schön, wenn sich bei Projekten was tut… Man merkt richtig, das die Entwickler [...]