ENABLE_ATTACK_DETECTION Setting

This page documents the ENABLE_ATTACK_DETECTION configuration setting in FormMail.

Type Of Setting

ENABLE_ATTACK_DETECTION is an OPTIONAL setting, which means...

Précis

Controls attack detection processing.

Description

Set ENABLE_ATTACK_DETECTION to false if you don't want FormMail to try to detect an attack designed to abuse your server.

The only reason you may want to set this to false is if you're testing FormMail's attack detection features.

FormMail has never been vulnerable to any of the attacks that it can detect. The purpose of attack detection is merely to prevent it from sending you an annoying alert whenever an attack happens.

If you're using Tectite FormMail, the only effect of an attack is one or more annoying alert messages (your server is safe).

Default Value

From version 9 onwards:

$ENABLE_ATTACK_DETECTION = true;

Before version 9:

define("ENABLE_ATTACK_DETECTION",true);

$ENABLE_ATTACK_DETECTION = false;

define("ENABLE_ATTACK_DETECTION",false);

See Also

• Server Abuse Detection
• ATTACK_DETECTION_URL
• ALERT_ON_ATTACK_DETECTION
• ATTACK_DETECTION_MIME
• ATTACK_DETECTION_DUPS
• ATTACK_DETECTION_SPECIALS
• ATTACK_DETECTION_MANY_URLS
• ATTACK_DETECTION_MANY_URL_FIELDS
• ATTACK_DETECTION_IGNORE_ERRORS