General questions about intrustion and CDN function

[rick]

Hi

I recently got a a lot of emails with this description:

The following potential attack has been detected by HMWP IDS…

I’ve already checked the box that says “Send an email to site admin whenever someone visits 404 page!” before all of this happened. Could where to disable this email notification?

Next question is about dashboard>intrusions (HMWP IDS Log)

I see a lot of
http://www.google.cz/imgres?imgurl=http://…
http://www.google.ca/imgres?imgurl=http://…
http://uk.images.search.yahoo.com/images…
http://www.google.com.au/imgres?imgurl=http://…

Should I exclude them? or just leave them be. I’m concerned that it might affect my backlinks from google and other search engines.

Last is about the General Settings tab
I’ve notice that there is a CDN tab in there, could you tell me what this is for? Since I’m actually planning on using a CDN network in the near future.

Thanks!

[rick]

This reply has been marked as private.

[Suman M.]

Hi, you can disable email notification about intrusions by setting “Notification Threshold” option to 0 in IDS Firewall tab.

The requests are detected as intrusions don’t necessarily mean that they are blocked. Such requests are blocked only if Impact level is more than 20 (default value specified in HMWP IDS). If you don’t want such requests to be detected as intrusions then add that request name in “exception field” under IDS Firewall tab.

CDN Path is where you enter your CDN URL if you use one.

[Author]

Posts