mimeini Posted June 15, 2010 Posted June 15, 2010 I am trying to secure my website after a mail-ware/code insert attack with the programs mentioned in http://www.oscommerce.com/forums/topic/313323-how-to-secure-your-site/ And in contention to that I have questions to two packages: first: IP Trap by fimble he talks about a whitlist. A list with the banned ip addresses. Where is that list located? can't find it. Should i make one? then: XSS_shield ># 1) add these lines to your .htaccess file Assuming that he means the .htaccess file in the catalog directory? ># 2) create an index_error.php file with whatever content you want to be displayed. where should I create this file? hop someone can help with this tree questions Thanks Mikkel
Guest Posted June 15, 2010 Posted June 15, 2010 he talks about a whitlist. A list with the banned ip addresses. Where is that list located? can't find it. Should i make one? IP Trap will create the list as IP's are added ># 1) add these lines to your .htaccess fileAssuming that he means the .htaccess file in the catalog directory? Yes, in the catalog directory. ># 2) create an index_error.php file with whatever content you want to be displayed. Yes, this file you create Chris
FIMBLE Posted June 16, 2010 Posted June 16, 2010 The whitelist is not the same as the IP_Trapped list. IP_Trapped list contains a collection of IP numbers that have been banned White list contains a list of IP numbers you do not want to be banned if they stumble on the Trap, in reality they should not as the robots.txt will tell them not to go there. Both files reside in the folder called banned, the IP_Trapped.txt will be written to by the script, the whitelist.txt you need to add IP numbers to your self Nic Sometimes you're the dog and sometimes the lamp post [/url] My Contributions
mimeini Posted June 16, 2010 Author Posted June 16, 2010 than you DunWeb and FIMBLE okey thats new to me than you :-) /mikkel
FIMBLE Posted June 16, 2010 Posted June 16, 2010 No Problem Nic Sometimes you're the dog and sometimes the lamp post [/url] My Contributions
Recommended Posts
Archived
This topic is now archived and is closed to further replies.