function security_review_check_query_errors_help in Security Review 7
Same name and namespace in other branches
- 6 security_review.help.inc \security_review_check_query_errors_help()
File
- ./security_review.help.inc, line 185
- Main help definition.
Code
function security_review_check_query_errors_help($check = NULL, $skipped_message = NULL) {
$element['title'] = t('Abundant query errors from the same IP');
$element['descriptions'][] = t("Database errors triggered from the same IP may be an artifact of a malicious user attempting to probe the system for weaknesses like SQL injection or information disclosure.");
if (!empty($skipped_message)) {
$element['findings']['descriptions'][] = $skipped_message;
}
elseif ($check && $check['result'] == FALSE) {
$element['findings']['descriptions'][] = t('The following IPs were observed with an abundance of query errors.');
foreach ($check['value'] as $ip) {
$element['findings']['items'][] = array(
'safe' => check_plain($ip),
'raw' => $ip,
);
}
}
return $element;
}
