The Joomla! Extensions Directory ™

Thank you for this great plugin, it's been 6 months I use this plugin and the results are amazing! direct report I received via email and I also immediately block the attacker ip address.

TY Marco

This plug-in is simple and it does what it claims. On one of my site people kept trying to exploit a vulnerability on Rokdownload ... I found out about it because of this extension.

thank you Marco

You state in your description that all I have to do after installing the plug in is turn on my mail reporting. How do I do that? I looked in my global configuration and could not find any thing on mail reporting?

This plugin detected an attack on our website, within five minutes we have stopped it by blocking the IP address the attack came from.
We are now planning to deploy this plugin on all our websites.

Thank you Marco for a job well done.

Simple, and does what it says. I also suggest sending letters in html, and with whois link - so it will be no more necessary to copy-paste IP, go to whois site etc...

From time to time our site gets these automated attacks, trying to access the site and probably its email system to send spam. As soon as I get the message I block the IP address.
Thank you for this great and simple extension!

Upon installation of this plugin, I noticed an attack with SQL injection exploting Rokdownloads module. Some of the information is provided via automated e-mail notification - where the attack is originated from, etc. (see example below)

Today there were 126 attacks from different servers within USA trying to inject the strings into joomlub? No such component has been installed, so it was a blind attack. Strange.

Keep in mind - our site is non-profit - what is the point of crashing our site? NONE...

THANK YOU, Marco!!! May this Great Karma find its way back to you tenfold!

Here is an example of some of the info from e-mail notification from one of the attacks:


**PAGE / SERVER INFO


*REMOTE_ADDR :
74.86.158.3

*HTTP_USER_AGENT :
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)

*REQUEST_METHOD :
GET

*QUERY_STRING :
option=com_joomlub&controller=auction&view=auction&task=edit&aid=-2%20union%20all%20select%201,2,3,concat(0x26,0x26,0x26,0x25,0x25,0x25,username,0x3a,password,0x25,0x25,0x25,0x26,0x26,0x26),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29+from+jos_users



** SUPERGLOBALS DUMP (sanitized)

My site was under attack for several weeks. Couldn't find out what part of the site was causing the problem. Thanks to this plugin my site is protected now and the emails the system creates helped me to find the component that was under attack. Thank you very much for this simple and very effective plug-in!!!

Honestly, I was attacked for more than 3 times as of now. I've just found this plugin and installed it as a remedy, I hope this helps me tighten a bit of security towards the attack.

Thanks for a nice share. May God Bless You with the Best!

Thanx!
I did installe this on a site i done and all the sudden i did get a mail that there was a attempt to hack the site. I did get all the information that i did need to send to the abuse for the IP-adress i did get.
Thanx!

The extension increased the security level of the websites where I installed it. It's simple and quick to setup.
:)
Thank you for your work!

The Concept Seems nice, there is a lot of front-end attacks, I hope this one prevents as much as it can.
Thanks a lot for keeping this plugin free on goodwill nature.

I will write a review again in the future to talk the success of the plugin.