I have been working hard for a couple of months on a file that scans each file before it is loaded. It then evaluates the code, looks for anything supsicous, adds up the number of positives and then based on the number of positives it outputs any action you so desire.
I have worked with it so that it works with any open_basedir restrictions (you just need to make a slight modification), and it works with safemode on.

I would like to know the interest in such a product. I originally planned to use this only for ZendURL, but if there is interest, I would be happy to create a user interface that would manage it all.

Here are the quetions:
Do you think it is a good productidea?
Would you buy it for your hosting company?
Would a $49 license and a (optional) $49 installation seem fair?

Thanks!

It's a great product idea.

I can't answer right now though if I'd buy it or not since I'm not doing free hosting now but possibly if I started up again, and this became a really, really big problem for me, I may.

$49 is a hefty price for a script I think...... but then again..... the fines you can get are so much greater :-/

Would $29 license and $49 installation be a better pricing system?

Also what do you free hosts think about this script and a $29 pricetag?

Hey Zend,

If this is going to run like a firewall or need additional apache mods will the users not need root access or there host to allow the mods? From what i am gathering this will be installed on the server somewhere and not in the users hosting account?

I would believe that you are right hostfree - judging by the other topic which we offtopic'd discussing this

Therefore i'd say that a user would also need Root access to run this? or would there be a non-root way of setting it up?

Also, if there's anyway I can help with it (not buying it ) then give me a yell (reply, PM, MSN, whatever...)

I really love the thriftyness of the free hosting community.

Firstly, This is, in my opinion a damm cool idea. ur brain works

Secondly, I dont think that those running free hosting will need installation and most of them are techie themselves. (I ran a survey)

The $49 price for script may seem a fine deal, but I suggest that you offer it on rental basis also to help hosts manage cash flows (say $4.99/month)

Another thing is that a nice admin panel is needed and without that it might be a headache to manage the rules

IS IT POSSIBLE TO USE IT WITHOUT ROOT ACCESS
Most free hosts are resellers .

Best of luck and wishes with the cooool idea.

i would be worried about one main problem

server usage - xpanel already does this and it is the highest single bottleneck of the script

pure-quotacheck.pl (where the scanning rules are) has about 1000% more cpu time usage then apache and mysql when i was testing

if there was a way to avoid this, then i would purchase it

Yes, server ussage is the major problem. I am hoping that I will be able to make it effecient enough that it is not a problem, but it is certainly the major downfall of the product. Besides making the code more effecient is there any other way to improve this?
Also the admin panel would be seamless. I am planning on having an ability to add/remove rules, change their values, change which functions are used (to either improve speed or improve searches), and other stuff like that. If you have any suggestions for the firewall itself (not just the interest of it), please let me know

Also these are the requirements:
PHP4 (maybe 5 by the time we are done, since my friend codes using a lot of PHP5 only functions)
php_prepend (root required for this I suppose)
Ability to allow php to work in html files (root required for this I suppose)

So it seems like you need root access. However I once logged into SSH for a shared host I was using, and found I had full root access (I could not access anybody else's account though), so maybe this is possible.

Also for all non-root access users. Unless you are able to change the security settings (editing the php.ini) your free host is probably toast anyways. So I think that you should have at least a $19/mo VPS from jaguarpc so that you have root access.
Besides simply making a small edit in the php.ini you do not need to do anything else ellaborate. No need to install mod_layout, or stuff like that.

Also I would be fine with a $4.95/mo rental license. Would this generate some interest?

Also hostfree, I don't know how you would feel about this, but would you consider selling this on your website (iSecurity or something like that), and then we find some way to split the profits? I'm not 100% sure if I would want to do it this way, but I would be interested to see your take on this.

using this method it is not possible to get around the serverload, another method would have to be used. You also must remember it has to scan ftp and filemanager edits, how will it integrate with different control panels?