OSE Anti-Hacker Version 5.3.3 - 5.3.4
* New feature -- Added the confidence level parameter for Stop Forum Spam Anti-Spamming function
OSE Anti-Hacker Version 5.3.2 - 5.3.3
* New feature -- Added Stop Forum Spam Anti-Spamming function
The major technical features include:
* Double Firewall system providing Three Layers of protection:
o Layer 1: Signature-based Detection System - detecting most common hacking behaviours.
+ a) Surface Scanning, once hacking behaviour is found, the activity and corresponding IP will be banned immediately.
o Layer 2: Pattern-based Instruction Detection Systems - blocking all inbound malicious codes and hacking activities, including network-, application-, and operating system-level attacks.
+ b) Scans and monitors all URL, Form Fields, Cookies values.
+ c) If hacking is found and the Risk Score exceed the secure level, the IP will be banned immediately.
+ d) If Suspicious Hacking behaviour is found for Form Fields and Cookies hacking, the
o, I installed this product also over the mobile phone connection!). I had some initial difficulties with payment on the site but these were addressed in real time (during his night) by Helix. Very impressive!
There have been plenty of hacking attempts since but nothing even approaching success, so I am very pleased. In future, my travels will be a lot more trouble free and I will sleep better at nights as a result of the Anti Hacker product.
Well done and thank you
After sale questions have also been promptly addresses so the support does not stop after you buy it.
I recommend this software 100%, their customer service is outstanding, very reliabled and quickly on the case. For that - what price tag can you put on it, this is the ultimate in value for money.
I had a client site that had been hacked and I thought I had replaced all the Joomla files and cleaned all remaining files. The virus checker found two files I had missed. I was impressed.
A couple of points to consider - when some of the checkers are running the only indicator is the browser tab showing 'loading' so it would be easy to think nothing was happening. A more visual warning that the system was carrying out the task would be better.
The £79 price tag is good value for money. It would save me more than that in time wasted just checking files for one hacked site!
Great stuff guys.
Now, I think the group at OSE deserve a great commendation because their tool does what it promises to do. I must thank Shawn who accessed my site and helped configure the tool right to make it work. The only think I notice is that the signature updating isn't quite intuitive for non-savvy users of Joomla. But then, I could be wrong
After being hacked several times we were thrown into the deep end of joomla site security and forced up a very steep learning curve.
We looked into each and every joomla security extension and settled on the Anti-hacker system, so far - we are very happy with that. Its a reassuringly complex piece of software that offers many different levels of security so you can refine it to your particular needs.
Initially, it wasn't trouble free setting up, however - the support team were very quick to respond and helped us through the entire set up and configuration process. They are also continuing they efforts to help us by looking into a conflict with another 3rd party component.
We particuly like the fact you can install the joomla version either on a shared server to protect many sites in one go or on as many sites as you like and set the security level accordingly for each site, a handy feature if you have different sites requiring different levels of protection.
This is what happened to me. I manage several joomla sites, and when I started getting some hits from my antivirus about infected webpages, I realized I had a problem. This was two weeks ago. I spend about 5 days dealing with it, and within hours all the files were reinfected. So I started searching for a good solution, and I found OSE. Did some reading but the materials online do not really pay tribute to the usefulness and quality of this product. So I jumped into the wagon, and what a ride!
First, the product is designed to be a watchdog of your website (the suite one)and it does exactly what it is supposed to do.
Installation was uneventful, except for a couple of issues which were quickly resolved by OSE tech support. Then the real fun began.
The anti-hacker component works nice and quietly. Your website will look just the same, but whomever wants to play funky URL's will get blocked at once. It can be fine tuned to avoid blocking everyone (yes, it can be VERY aggressive), and for the most part is simple and effective to use. It hooks up to projecthoneypot.org to keep spammers from pestering your site.
The anti-virus is a lil bit tricky to use, but once it is set, it will be of great assistance and will detect a great deal of problematic files.
OSE's suite is really worth every penny. Today I am still closely monitoring my sites, because once you have been hacked, it seems you're listed on the hacker's yellow pages and everyone wants a piece of your server. So yes, I am still getting hits, but they are being banned, and I foresee a big decrease as they realize I'm OSE-protected.
Nevertheless, and regardless of this being an awesome product, keep in mind that a safe site is an ongoing process. I have blocked a few countries via .htaccess, and I also have installed a little nice component that audit my file system periodically via cron.
However, I feel much safer than I did before. If you're a casual joomla user, I would strongly suggest you take a look at this component, because it will definitely pay itself many times along the way.
And if you become an OSE customer, I encourage you to contribute with your findings. The AV didn't pick up a couple of pests which I detected manually, and I'm submitting them to OSE so they will be included in the next signature update.
So far, this component has made me smile a bunch of times a day when an email hits my mobile reading:
[thisismysite.com] Suspicious Exploit Alert
A suspicious injection exploit attempt was logged on 2010-01-19 15:33:43
IP Address: 208.x.x.x
Referrer (if any): http://xxxxxx
Query String: Request.currentURI=xxxxxx
Violation: Layer 2 Protection [Violation of Rules: 15]
NOW THAT IS WHAT I'M TALKING ABOUT!
Thanks OSE team!
To keep it short:
People who know the complexity of a website and its background-processes will –of course- also be able to realize that it will be difficult to implement anti-hacking tools seamlessly into the existing server-structure without manual-investigation on the server itself. But the company is dealing in a very very professional way with this issue. They’re giving excellent support during the installation and setup-process. Helix is doing a really good job – seems to be working around the clock. He is always friendly until the very last question is answered. I have learned a lot about rights-management and http-includes.:)
The software is now doing what it is supposed to do: It protects my websites from attacks. Thank You!! From now on this will become standard on all my future installations.
Installation was somewhat more complex than we are used to - at least on our setup. But the developper gave us outstanding support until the installation worked (way beyond the value of the price of the software!)
Now we can see, how often hackers are attacking our sites.... frightening, yet we are pretty sure the IP locking mechanism works very well :)
Furthermore we are made aware of any potential weaknesses in components we use by displaying warning messages. This is helpful, though at times cumbersome. However, even here the developper has been very helpful indeed in explaining in understandable terms what is going on and how to resolve issues.
So we learned.... making a website safer is more complex than we ever imagined - but got outstanding support in the process and a highly recommendable piece of software at a *very* reasonable price.
Indeed! As customers we encountered a coherent and solid developed extension and a enthusiastic team behind ready to support and help with commitment!
We are looking forward to this engaging company's products, services, and customer support model. We'll promote them without hesitation on our fellow Adobe User Groups around the world.
Kudos to all the team!
Adobe Community Expert
Adobe User Group Manager
So far, the software has helped to prevent virus attack on my website.
Thank you very much.
The component was easy to install and comes with detailed install instruction. More documentation is available at the developers website. For the setup of all security options you need some time but those are not complicated to implement.
The component does the job - you can test it (even with your own IP) and with an easy routine you can unblock your IP after testing.
I integrates nicely with GuardXT (use recommended by the developer) and you have a full scope of security measures at your hand.
It scans for malicious code in your Joomla installation - but that's not all - you can check all PHP systems on your server. The scans did run without any conflicts.
I had some minor issues to adapt the component to my needs and the developer responded very fast via the forum. Thumbs up!
The minor issues I had will be handled with the RC1 release. I recommend this component as I believe you get a secured website at a fair price.