WPIDS version 0.1.2 released
Article written by philipp
This plug-in is hopelessly outdated and not being maintained by the author anymore. Please do not use this plug-in but only the native version of the PHPIDS. Thank you.
We are pleased to announce the long overdue new WPIDS release. This package is supposed to be a bug-fix release, since several problems were reported and have been wiped out. Here’s a small list of the most important issues:
- In previous versions XML-RPC was blocked completely, now you have a option to enable/disable it
- The search now works for non English chars. Before the fix all non English characters where dropped
- A bug within the logging facility caused it that all logged entries were added with a lower impact than supposed to be
Of course this version ships with the latest PHPIDS version which is currently 0.4.7. Anyway they’re still lots of work to do. For example the login page is displayed with some error/warning message. Also it turned out to not be very wise to check on the HTTP_REFERER since it throws too many false alerts.
Since the mentioned problems don’t affect your site’s security nor work flow, are they planned to resist up to the next bigger release. The next release is planned to be the Version 0.2 of WPIDS, which will be completely rewritten. Some features of Lockdown – the embedded sister project – will be kept and will be manages as opt out. Furthermore Version 0.2 will come with more granular maintenance and configuration options.
The download is available as Full Package, or you can get it from the SVN.
This entry was posted
on Thursday, February 21st, 2008 at 1:34 am and is filed under WPIDS.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
February 21st, 2008 at 1:55 am
[...] original release is available at phpids.org, a Full Package is ready for Download, or you can get your latest Copy from the Subversion. [...]
February 24th, 2008 at 4:40 pm
[...] you surely recognized from php-ids.org and BlogSecurity.net already I made a new release of WPIDS. This release fixes several problems [...]
April 20th, 2008 at 1:52 pm
Nice article philipp! Security is important for me, so i read it all, keep it coming! Regards, aislin
July 22nd, 2008 at 2:36 pm
[...] my Wordpress Blog from such attempts in the future and after a lot of trial and error i settled on WPIDS. It is based on the PHPIDS (PHP Intrusion Detection) Library and works on a set of regularly [...]
July 22nd, 2008 at 2:39 pm
Please note that the WPIDS 0.1.2 – the latest version – is hopelessly outdated and should not be used at all. Please stick to the PHPIDS and not to badly maintained extensions for working site security.
Greetings,
.mario
September 18th, 2008 at 10:56 pm
@mario, thanks for the notice!
September 29th, 2008 at 6:22 pm
[...] for your PHP based web application. I found two implementation of it, neither final and stable: WPIDS, and PHPIDS for [...]
November 3rd, 2008 at 3:51 pm
Great. Is this still the current version or are there updates available since the release?
November 3rd, 2008 at 4:56 pm
Hi, no no – this version is totally outdated and we don’t support the WPIDS any longer since the author didn’t keep track with the upgrades. Please don’t use the WPIDS but just the official PHPIDS.
Greetings,
.mario
November 23rd, 2008 at 1:55 am
I use the full package since the release. No problems at all, and very stabable. Recommended! greetz, Bram
July 6th, 2009 at 11:34 am
Thanks….. Greetz Robert
July 14th, 2009 at 9:14 pm
[...] WPIDS のセキュリティ設定を変更することができる [...]
July 24th, 2009 at 2:59 pm
[...] Counter http://wordpress.org/download/counter/ [10] WordPress Intrusion Detection System Plugin http://php-ids.org/2008/02/21/wpids-version-012-released/ [11] Hardening WordPress with htaccess http://blogsecurity.net/wordpress/article-210607 11. About [...]