raffi007 Posted February 22, 2005 Share Posted February 22, 2005 Hi i need some help i have installed everything perfectly but i have a question, i think that this might cause some problem let say my website address is http://www.mywebsite.com and that escommerce is installed on /eshop so http://www.mywebsite.com/eshop i realized that any1 typing http://www.mywebsite.com/eshop/admin can gain access to the administration panel isn't the admin panel protected by a username and a password ? how come each time i type http://www.mywebsite.com/eshop/admin i get directly to the admin panel without typing any username or password Link to comment Share on other sites More sharing options...
Guest Posted February 22, 2005 Share Posted February 22, 2005 You have to use a Password Protected Directory feature which are available from most hosts. Link to comment Share on other sites More sharing options...
raffi007 Posted February 22, 2005 Author Share Posted February 22, 2005 You have to use a Password Protected Directory feature which are available from most hosts. <{POST_SNAPBACK}> do i use it on the /eshop/admin directory or on eshop/ Link to comment Share on other sites More sharing options...
Guest Posted February 22, 2005 Share Posted February 22, 2005 Alpha is correct. Use your vdeck or other host manager tool to password protect ADMIN If you protect eshop, then people trying to get to your store must have a username/password to access it. they probably wouldn't like that. But look in your host tool and configure the ADMIN folder as password protected. Link to comment Share on other sites More sharing options...
raffi007 Posted February 22, 2005 Author Share Posted February 22, 2005 do i use it on the /eshop/admin directory or on eshop/ <{POST_SNAPBACK}> than you alot i just created the .htaccess file and ht.passwd file in the admin directory now its protected but i find it weird that they didnt use a page with a username and password Link to comment Share on other sites More sharing options...
Guest Posted February 22, 2005 Share Posted February 22, 2005 if you know how, it is easy to create the .htaccess / .htpasswd files. Just ensure your .htpassword file is located OUTSIDE of the public_html area if you manually create it. Make a new folder in your root and call it .htpasswd or .htaccess and save your .htpasswd there. that way nobody can get into your root. The majority of host providers have it in their file manager software that use use to configure your server. go into their file manager and you should see something like file directory... then you should see password protect directory. A bit quicker than making your own files. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.