vb.org Archive - Anyone ever tried 'FireWall Script'?

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- Forum and Server Management (https://vborg.vbsupport.ru/forumdisplay.php?f=232)

- - Anyone ever tried 'FireWall Script'? (https://vborg.vbsupport.ru/showthread.php?t=211938)

Alex LD

04-22-2009 08:31 PM

Anyone ever tried 'FireWall Script'?

Title says it all.

If so is it worth paying $120 and did it help you out in any way?

snakes1100

04-22-2009 10:49 PM

Why would you pay for a firewall script, there are plenty of free ones on the web and most are easily configurable.

Alex LD

04-22-2009 10:59 PM

Because you pay for what you get (quality wise) and being secured is my number one priority. Plus this isn't just for vBulletin this is for any PHP script and it has a lot more configurations, whether they're "easily configurable" or not.

Dismounted

04-23-2009 05:24 AM

You're probably better off with an open-source system firewall and something like Suhosin/mod_security.

snakes1100

04-23-2009 10:13 AM

Quote:

Originally Posted by Alex LD (Post 1797060)

There is no reason to pay for a firewall script as both myself & dismounted pointed out, whether its for vb or for the server, there are plenty of good free firewall programs on the net to dl & configure yourself, just to name a few, apf or csf by configserver, as dismounted pointed out mod_sec, that can be a pain in the arse depending on who's version you run as there are a few out there, tracking down errors with it can sometimes be difficult as its not commented correctly depending on version & coder.

Angel-Wings

04-23-2009 01:04 PM

Hmm - I wouldn't use it. Security system have to be open, that one requires Ioncube in order to run so this makes another PHP extension, another additional thing that needs to be cared off.
Maybe invest the money in some books - Suhosin / mod_security are maybe better solutions because both do the analyzing, filtering on an earlier level before the PHP parser gets active. Just want to say it's maybe useless to prevent PHP scripts from doing something with another PHP script - that should be done before the script gets parsed and the code gets executed. :)

I don't say this software is useless, just that there're some other, more open solutions available that maybe fit better.

motowebmaster

04-25-2009 12:07 AM

It has a nice interface, but is best suited for sites on shared hosting services. It protects at the domain/site level, by executing as a php script that is called via your existing php script or a htaccess file. As long as the respective shared hosting service adequately locked down the server you were using, this may be a worthwhile option.

However, if you run your own server (or VPS), this won't provide the protection you need.

All times are GMT. The time now is 05:25 AM.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.01159 seconds Memory Usage 1,719KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)post_thanks_navbar_search (1)printthread (7)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: