I just found out about PHPIDS and I have a couple of questions:
Can PHPIDS protect from automated sql injection attacks ?
Can it protect from DOS attacks?
Is it enough to be used on its own or must I use additional methods too?
Is it reliable?
PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to.
What that means is you STILL have to decide what to do with the: