Yep – the calls for a PHPIPS start to get louder and louder. Let’s IM about that as soon as you have some time. There are already many ideas drawn together.

Oh the WebFu lessons are going to be against the all mighty powerfull PHP-IDS, .mario and christ1an? maybe also ma1?

well, this will be interesting..

I’m not sure what you’re pointing out here, yes my blog does have frame protection. If you want to translate then please disable javascript when translating.

Thanks for testing in IE7

http://translate.google.com/translate?u=http%3A%2F%2Fwww.thespanner.co.uk%2F2007%2F11%2F08%2Fwebfu-dojo-xss-self-defence%2F&langpair=en%7Czh-CN&hl=en&ie=UTF-8

this is the code :
<html>
<body>
hi
<script type=”text/javascript”>
if (top != self) {
top.location.href = ‘http://superhei.blogbus.com/';
}
</script>
</body>
</html>

I’ve been thinking of implementing a WebFu self defence kit for a bit of fun, it would include the PHPIDS to detect the attacks. What do you think? Want to help?

I’m honoured with your presence *bow*, your IDS tiger style is legendary.

@Pai Mei DaCat

Likewise I’m honoured *bow* your obscufication whirlwind kick is impressive.

lately I’m seeing a lot of code that would be very cool implemented in a PHP-IPS.. it’s possible, but hard..

lately I’m seeing a lot of code that would be very cool implemented in a PHP-IPS.. it’s possible, but hard..