diff --git a/modules/module_extras.php b/modules/module_extras.php index 0d70f06..24dcb45 100644 --- a/modules/module_extras.php +++ b/modules/module_extras.php @@ -8,7 +8,7 @@ * License: GNU/GPLv2 * @see LICENSE.txt * - * This file: Optional security extras module (last modified: 2024.05.06). + * This file: Optional security extras module (last modified: 2024.05.12). * * False positive risk (an approximate, rough estimate only): « [ ]Low [x]Medium [ ]High » */ @@ -83,6 +83,14 @@ $CIDRAM['Reporter']->report([15], ['Caught probing for unsecured backup files.'], $CIDRAM['BlockInfo']['IPAddr']); } // 2023.08.13 mod 2023.08.21 + /** Probing for unsecured SQL dumps. */ + if ($Trigger(preg_match( + '~^[^?]*[^/?]+\.sql(?:\.(?:b[ac]k|bz|new|old|t?gz|7?zip|[rt]ar))?(?:$|[/?])~', + $LCNrURI + ), 'Probing for unsecured SQL dumps not allowed')) { + $CIDRAM['Reporter']->report([15], ['Caught probing for unsecured SQL dumps.'], $CIDRAM['BlockInfo']['IPAddr']); + } // 2024.05.12 + /** Probing for unsecured WordPress configuration files. */ if ($Trigger(preg_match( '~(?:^|[/?.]|\._)wp-config\.php(?:\.(?:bak\d*|bkp|conf|dist|du?mp|inc|new|old|orig|sw.|tar|te?mp|txt|[\d\~#_]+)|[-.]backup)?(?:$|[/?])~', diff --git a/modules/modules.dat b/modules/modules.dat index b8700d9..e866271 100644 --- a/modules/modules.dat +++ b/modules/modules.dat @@ -233,7 +233,7 @@ module_cookies.php: module_extras.php: Name: "Optional security extras module" False Positive Risk: "Medium" - Version: "2024.126.0" + Version: "2024.132.0" Dependencies: PHP: "^5.4|^7|^8" CIDRAM Core: "^1.13.1|^2.0.1" @@ -248,7 +248,7 @@ module_extras.php: - "module_extras.php" - "module_extras.yaml" Checksum: - - "645bd58fd4fe879328a854a02e49f7eba27b011873207169d9c9c8410be5a582:27305" + - "b64588a4358c5067a903a01cb342d5aa97e386b944481ce2713e30956f88e6e1:27708" - "7b891d1fa4b1c52c410220bc758e8cb7064bd6040430fb149a5b60e9ae2e0838:890" Used with: "modules" Reannotate: "modules.dat"