Looking for the latest version? Download ninjafirewall.3.1.8.zip (251.8 kB)
Home
Name Modified Size Downloads / Week Status
3.1.8 2016-09-04 11 weekly downloads
3.1.4 2016-05-25 0
3.1.2 2016-04-02 0
2.0 2014-09-19 0
1.0.3 2012-01-24 0
README 2016-09-04 3.4 kB 0
Totals: 6 Items   3.4 kB 1
= 3.1.8 = * Updated security rules and improved XSS evasion techniques detection. * [Pro+ Edition] Fixed a bug where notifications sent or displayed by NinjaFirewall were showing the load balancer IP when an alternate address was defined in the "Access Control > Source IP" section. * Blocked threats written to the firewall log will be hexencoded, to lower false positives from antivirus scanners. * Minor fixes and adjustments. = 3.1.7 = * Updated security rules. = 3.1.6 = * Updated security rules. * [Pro+ Edition] Updated IPv4/IPv6 GeoIP databases. * Fixed a bug affecting the admin dashboard token. * Minor fixes and adjustments. = 3.1.5 = * Updated security rules. * [Pro+ Edition] Updated IPv4/IPv6 GeoIP databases. = 3.1.4 = * Updated security rules to protect against a critical Magento vulnerability (CVE-2016-4010). * [Pro+ Edition] Updated IPv4/IPv6 GeoIP databases. = 3.1.3 = * Updated security rules. * Minor fixes and adjustments. * Added a warning in the "Overview" page if a PHP opcode cache is enabled. * [Pro+ Edition] Updated IPv4/IPv6 GeoIP databases. = 3.1.2 = * Added an option to select the number of log lines to display (see "Firewall > Security Log > Log Options"). * The "X-XSS-Protection" and "HttpOnly flag" options from the "Firewall Policies" page will be enabled by default with new installations of NinjaFirewall. * The "Firewall Policies" sanitise options (GET, COOKIE etc) will replace all "<" and ">" characters with their corresponding HTML entities "&lt;" and "&gt;". * Minor fixes and adjustments. * [Pro+ Edition] It is possible to exclude multiple files/folders in the "File Guard" options page (multiple values must be comma-separated). * Updated security rules. = 3.1.1 = * Speed improvements. The latest set of security rules was optimized to drastically speed up the firewall engine. * Tweaked two anti-XSS rules to prevent attempts to bypass them using HTML events inside truncated/unclosed HTML tags. Thanks to Sven Morgenroth for reporting the issue. * [Pro+ Edition] The File Guard and Live Log functions were moved from the firewall main script to two separate scripts inside the /lib/ folder. * Updated security rules. * The MJ12bot user-agent was removed from the firewall blacklist. This bot DOES follow the robots.txt and hence there is no reason to blacklist it. = 3.1 = * [Pro+ Edition] Geolocation access control can apply to the whole site or to some specific URLs only (e.g., /script.php etc). See the "Firewall > Access Control > Geolocation Access Control > Geolocation should apply to the whole site or specific URLs" option. * Added an option to the "Firewall Log" page to export the log as a TSV (tab-separated values) text file. * The "Delete" button from the "Firewall Log" page was moved above the textarea, beside the "Export" new button, and can be used to delete the currently viewed log. * Fixed a PHP warning in the firewall script. * Minor fixes. * Updated security rules. * We launched NinjaFirewall Referral Program. If you are interested in joining the program, please consult: http://nin.link/referral/ = 3.0.1 = * Updated security rules. = 3.0 = * This is a major update: NinjaFirewall has a brand new, powerful and awesome filtering engine. Please see our blog for a complete description: http://nin.link/sensei/ * Added many new security rules. * Minor fixes. * [Pro+ Edition] Updated IPv4/IPv6 GeoIP databases.
Source: README, updated 2016-09-04

Thanks for helping keep SourceForge clean.

Screenshot instructions:
Windows
Mac
Red Hat Linux   Ubuntu

Click URL instructions:
Right-click on ad, choose "Copy Link", then paste here →
(This may not be possible with some types of ads)

More information about our ad policies
X

Briefly describe the problem (required):

Upload screenshot of ad (required):
Select a file, or drag & drop file here.

Please provide the ad click URL, if possible:

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

No, thanks