Newer
Older
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
; <?php die(); ?>
; PHPIDS Config.ini
; General configuration settings
[General]
; basic settings - customize to make the PHPIDS work at all
filter_type = xml
base_path = /full/path/to/IDS/
use_base_path = false
filter_path = default_filter.xml
tmp_path = tmp
scan_keys = false
; in case you want to use a different HTMLPurifier source, specify it here
; By default, those files are used that are being shipped with PHPIDS
HTML_Purifier_Cache = vendors/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer
; define which fields contain html and need preparation before
; hitting the PHPIDS rules (new in PHPIDS 0.5)
;html[] = POST.__wysiwyg
;html[] = POST.records
;html[] = REQUEST.records
; define which fields contain JSON data and should be treated as such
; for fewer false positives (new in PHPIDS 0.5.3)
;json[] = POST.__jsondata
; define which fields shouldn't be monitored (a[b]=c should be referenced via a.b)
; exceptions[] = GET.__utmz
; exceptions[] = GET.__utmc
; exceptions[] = POST.maildir_path
; exceptions[] = REQUEST.maildir_path
; exceptions[] = REQUEST.website_path
; exceptions[] = REQUEST.website_symlinks
; exceptions[] = REQUEST.vhost_conf_dir
; exceptions[] = REQUEST.vhost_conf_enabled_dir
; exceptions[] = REQUEST.nginx_vhost_conf_dir
; exceptions[] = REQUEST.nginx_vhost_conf_enabled_dir
; exceptions[] = REQUEST.php_open_basedir
; exceptions[] = REQUEST.awstats_pl
; exceptions[] = POST.website_path
; exceptions[] = POST.website_symlinks
; exceptions[] = POST.vhost_conf_dir
; exceptions[] = POST.vhost_conf_enabled_dir
; exceptions[] = POST.nginx_vhost_conf_dir
; exceptions[] = POST.nginx_vhost_conf_enabled_dir
; exceptions[] = POST.php_open_basedir
; exceptions[] = POST.awstats_pl
; exceptions[] = REQUEST.fastcgi_starter_path
; exceptions[] = REQUEST.fastcgi_bin
; exceptions[] = POST.fastcgi_starter_path
; exceptions[] = POST.fastcgi_bin
; exceptions[] = REQUEST.jailkit_chroot_home
; exceptions[] = POST.jailkit_chroot_home
; exceptions[] = REQUEST.phpmyadmin_url
; exceptions[] = REQUEST.phpmyadmin_url
; exceptions[] = REQUEST.records.weak_password_txt
; exceptions[] = POST.records.weak_password_txt
; you can use regular expressions for wildcard exceptions - example: /.*foo/i
[Caching]
; caching: session|file|database|memcached|apc|none
caching = file
expiration_time = 600
; file cache
path = tmp/default_filter.cache
; database cache
wrapper = "mysql:host=localhost;port=3306;dbname=phpids"
user = phpids_user
password = 123456
table = cache
; memcached
;host = localhost
;port = 11211
;key_prefix = PHPIDS
; apc
;key_prefix = PHPIDS