The Joomla! Extensions Directory ™


RSFirewall! ComponentModulePlugin

RSFirewall! is the most advanced Joomla! security extension that you can use to protect your Joomla! website from intrusions and hacker attacks. It's backed up by a team of experts that are trained to be always up to date with the latest known vulnerabilities, security updates making RSFirewall! the best choice in keeping your website safe.

Specs
» Compatible with Joomla! 2.5 & 3.x

Highlights
» Backend Password - Add an extra layer of security by typing in a password before logging in the administration!
» Blacklist - Block unwanted (single or multiple using wildcards *.*.*.*, CIDR notation and ranges) IP addresses.
» IPv6 support
» Whitelist - Bypass protections for selected IPs.
» Stop brute-force login attempts - Capture login attempts (as well as incorrect passwords).
» Malware database - Detects obfuscated, encoded as well as potentially dangerous files (eg. base64_encode, eval, gzinflate, preg_replace /e)
» Automatically drop dangerous files when they're uploaded - such as .php, .js, .exe, .com, .bat, .cmd
» Disable the creation of new Administrators
» Protects selected Administrators from any changes - including password change!
» Log all security events and send messages to specified email address(es)
» Powerful exception system - Disable protections based on User Agent, URL or component (regular expressions allowed).
» Database Check - Optimize & repair your database tables.
» Display CAPTCHA in the administration section after a predefined number of failed login attempts.

Active Protections
» Country blocking - Allows you to select which countries have access to your Joomla! website (also blocks anonymous proxies). Based on GeoIP Lite Country database.
» Local file inclusion (LFI)
» Remote file inclusion (RFI)
» SQL injection (SQLi)
» HTML, Javascript and CSS filtering (XSS)
» Denial of Service (DoS) - Block unwanted User Agents
» Automatic blacklist
» Actively scans POST and GET variables.
» Keeps an eye on sensitive Joomla! files and alerts you if they are changed.

System Check
» Check for the latest Joomla! & RSFirewall! versions.
» Provides suggestions on how to tighten your PHP & Joomla! configuration.
» Scan Joomla! core files for integrity.
» Scan files and folders for common permission errors.
» Scan files for common malware.

Report Extension

 

Images

 

2014-08-14
Reviews: 1
After months of hacker abuse using my server as an smtp gateway with more than 100k emails in my queue, this component helped me find every malware script hidden inside folders and files I would have never found. This is a huge relief. I will be adding RSFirewall to every joomla site I manage. Thanks!
2014-07-23
Reviews: 9
I have been using RS Firewall for about 18 months now, and have now deployed it on dozens of sites. These days, it's the very first extension that gets installed on all new instances of Joomla!

I own a number of directories in the financial services vertical, and have had some sites hacked ten or more time before we started using RS Firewall. There has not been a single successful hack attempt on any of our sites since we started using this excellent extension.

I own a lot of RS Joomla! licenses, and am a huge fan of this developer. They keep their products current, their pricing is realistic, and their support is excellent. A first rate extension from a first rate developer.
2014-03-20
Reviews: 6
I purchased this firewall after a site on a domain reference was hacked twice whilst closed to the public before I had even launched it.

It looked like a server attack as several other sites got hacked soon after - I have about 160+ Joomla sites, it took a few days to get a firewall on all, so some of the other hacked ones did not get the firewall installed in time.

Before getting the firewall I was already moving my configuration file to a safer place, but the firweall instructions taught me several additional methods of hardening sites.

I have used the firewall for three years now, and in THREE YEARS out of 160+ SITES I have only had a couple of sites hacked whilst using it , not bad as many are only the latest patched Joomla 1.5x and 2.5x. Of those two hacked sites I reckon one probably already infected when I installed the firewall. I contacted RSFirewall support about the other site that was compromised that did have the firewall installed and they gave me a fix within a few hours. The next day they released a new version with that fix incorporated.

Prior to installing the firewall I must have had about 10 sites hacked in the space of months, some repeatedly as I had not cleaned them sufficiently.

Some webmasters like to signoff on a site, take the money and run on to the next one to churn out. I like to look after my clients, repeat customers and word of mouth is gold dust in this networking world. I am a reseller, I get them to host with me, I harden their site the best I can, install the firewall and update the extensions and apply security releases to the core as quickly as I can. I don't charge rock bottom price for hosting and earn a bit back toward the time spent on updating each site.

The customers come back for more :-)

Thank-you very much RSfirewall.
2014-02-04
Reviews: 2
Having installed this on my site and a couple of users sites - I have found both the protection and service to be second to none.
2014-02-03
Reviews: 6
Joomla is a target for hackers, so there is a need for something to secure our websites, and I found that in RSFirewall!
2014-01-26
Reviews: 6
This tool is a must for both new and experienced users.
It is not only a 'firewall' which protect your site from attacks, but also has great scan tools and logging available. A must!
(it helped me find the cause of malicious code inserts in my .js files)
2013-11-29
Reviews: 2
The most advanced security component. I feel secure on all sites I have RSFirewall installed. The scanners and reports are very well performed. The only missing thing is filter also other request types such as FILES, not only POST and GET... Thanks anyway, a good security system.
Owner's reply

Thank you for your review.
Please note that RSFirewall! does incorporate checks for uploaded files ($_FILES) as well:
http://www.rsjoomla.com/support/documentation/view-article/237-rsfirewall-configuration.html
Please read the "Uploads" section.

2013-09-27
Reviews: 1
RSFirewall loaded and worked like a charm but could not initially detect whether my server was running the most recent versions of RSFirewall and Joomla. Tech support responded quickly and discovered a bug in the Joomla 3.1.5 installation, not RSFirewall. They patched it locally and spared me a lot of grief. Thank you!
2013-09-09
Reviews: 13
Excellent extension and well worth the price. Install, configure and wait for the alerts to come in. Only niggle is the password protection has gone and it uses User Groups which means clients can and will meddle with it.
2013-08-26
Reviews: 7
Great site checker for Joomla! Definitely well worth the money. Easily run system checks, database checks, view the system logs, configure the firewall, add and remove IP's from Blacklist/Whitelist's and add firewall Exceptions.
Highly recommended.
2013-04-14
Reviews: 9
Just outstanding is this component. Recent (April 2013) massive bruteforce attacks where beat off completely. No SQL Injection anymore. RSFirewall points the finger at your own flaws. Love the autoblacklist feature. And so much more. Thanks to RSJoomla.
2013-04-08
Reviews: 3
This was so easy to use, I literally had it installed and running in just a few minutes. The interface is well designed and very clear - I love the way it explains the problems and helps you to fix them automatically. It gives you a score rating for your site which may seem bit gimmicky but it does inspire you to try to keep working to get it up to 100. Good documentation too. I loaded it onto all my sites and found various dubious files hidden away that needed to be removed.

I don't tend to buy many commercial Joomla extensions but this is one that I think is well worth every penny.
2013-03-12
Reviews: 19
You would not believe how many people and bots try to hack your site all day everyday. I wish I had installed this sooner! Don't wait for your site to be hacked as the chances are someone is trying right now. They install all sorts of scripts and can easily get your whole server blacklisted. It's well worth the peace of mind.
2013-02-26
Reviews: 16
I must say having this component has made me sleep at night. I have installed this on all of my older sites and now have 100% tightened security. I am going to add this to all my sites when I have time this is a must have to all website designers.
2013-02-18
Reviews: 9
To go straight to the point: This is a must-have...

The component a.) secures your installation in critical points b.) protects for hacks of insecure uploads c.) cleans your Database and temp-folders d.) a county-blocklist (even a black-white-list) e.) has an outstanding support-team (what not every paid component has...).

So an cost-free alternative without the "one-stop-solution-idea" could be "Admin Tools" by Akeeba, but without the really nice security features.
2013-02-12
Reviews: 6
I might work in IT, I never knew how easy it is to hack a website these days. A website I built with Joomla got hacked last year, and after much pain restoring it and finding out what happened, I found out it was an automated tool available to anyone and that multiples hacks were implemented in it. So some script kiddie was simply running it(the tool use google to find vulnerable Joomla website).

Now, there is no way I can keep up with new hacks so I tried and installed RSfirewall. Since then, zero successful attack! And I love that it runs a full security diag on the website and tells you what to change/fix. Great support also from the devs when I updated the website to Joomla 2.5. Five stars, although I wish the functionality was built-in joomla. I learned the hard way that a default joomla install it NOT secure and that there are alot of stuff to do to iron it.
2013-02-03
Reviews: 2
Like the previous poster, I don't write many reviews. But I just got my first email notifications from rsFirewall. What a great feeling it was knowing the it was doing it's job. All I can say is. Wow. The firewall is great. And the System Check is the best I've ever seen. What a great tool. My only suggestion is, be sure to turn on captcha and auto-blacklisting if you're using the email notification feature. Your email provider might not be so happy with you if you don't. Fortunately I was at the computer and quickly got it turned on when the phone started screaming. Lesson learned. Thanks again for a great product.
2012-11-28
Reviews: 3
I never normally review but it is really crazy how much my site needed this. Every day i get reports with attempted hacks. I never knew my site was in this much danger. My site got hacked a while back and i was looking for something to protect my site and this was it.
2012-11-18
Reviews: 1
This extension is just amazing. I really does the job. If you are looking for an extension to protect your joomla site you have found it. Incredible technical support fast and acurate. And they will not let you down. Thank you RSJoomla. Keep up the good job.
2012-09-29
Reviews: 2
I am using this extension since last 2 years. After installing this extension I am bit relieved as earlier my site was hacked twice. This extension immediately informs about any suspicious activity. Very easy to install and use. I think it is a must for every joomla site
Page 1 of 5