XOOPS Documentation Series


Module Protector

for XOOPS 2.5.7


User Manual

© 2016 XOOPS Project (www.xoops.org)

Module Purpose

Protector is a very useful module that can help improve the security of your XOOPS site, and is widely regarded as a ‘must have’ module for all XOOPS websites. Protector is capable of defending against: - Some kinds of denial of service (DOS) attacks, bandwidth-hungry crawlers and spambots. - SQL injection, variable contamination, null bytes, session hijacking, and some kinds of cross-site scripting. - Brute force attacks and directory traversals. - Uploading of camouflaged image files and executables. - Link and comment spammers.

Protector logs the attacking IPs and offers a range of countermeasures including IP bans, blank screens and automatic sanitisation of attempted injections etc. Protector also evaluates your site for certain vulnerabilities and providing warnings about them through a ‘security advisory’ page, and provides instructions on how to fix them.

Figure 1: Main view of the Protector Module (Admin side)

Download/Fork the Module

You can fork the module --> here)

How to Contribute

You can contribute on GitHub. Changes will be pushed to Gitbook.io automatically when the main repository changes.

Editing the book can be done either by updating the markdown files with a text editor, or opening the repository in the Gitbook desktop app. The desktop app will give you a live preview option.

Table of Content


Creative Commons License
Unless specified, this content is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

All derivative works are to be attributed to XOOPS Project (www.xoops.org)