PhSoftware

[feorlen]

I'm not clear on where the blocked requests are logged. I see a few already so they must be saved somewhere, but the IDS/tmp/phpids_log.txt file is empty. I'd like to monitor what's being reported outside of Wordpress but I can't see where to look. If it's going to a database, is the plugin taking my database credentials from my WP install?

And what exactly does this mean? It sounds quite frightening. I have not changed anything in this file as I don't know much about it yet. But of course if I'm to install the plugin in my Wordpress directory, it must be in documentroot...

; PHPIDS Config.ini
; General configuration settings
; !!!DO NOT PLACE THIS FILE INSIDE THE WEB-ROOT IF DATABASE CONNECTION DATA WAS ADDED!!!

Also, is it required to have the default_filter.xml and Config.ini inside the plugin directory? I host multiple sites each with a Wordpress install, I'd like to point to one common location for these files so they are easier to update. The Config.ini suggests this is possible, Is it reasonable?

Thanks.

[Philnate]

The current version does only log entries into the database, all needed Information is taked from your WordPress Blog.
You don't need to be frightened about anything as WPIDS doesn't use the PHPIDS files for it's database Information, it doesn't add anything additional to your Blog which could lead to a information leak(it uses as all other Plugins as well the given Variables within WordPress to get the needed Informations).
In the Current state it's needed to have these files within the plugin folder, and currently I'm as well not able to tell you how to achieve it so you can host them central, but I'm trying to let you know how to do so.