Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

admin security


matt1

Recommended Posts

I'm worried about the security of the admin section of the site. I've been playing around with .htaccess files to protect the admin, but even once I get this working the admin will be accesssible from the net with username & pswd. Is this the generally accepted way of running the oscommerce admin or have i missed a major point in the setup?

 

Am I supposed to have the admin running on a local server in some way?

 

Regards

 

Matt

Link to comment
Share on other sites

there are many items on this, use an htaccess file (best) also admin access with levels contribution.

this is generally the best way for htaccess

Link to comment
Share on other sites

If you have a decent web hosting control panel then use the Password Protect or Directory Protection feature to Password Protect that directory. This feature writes the .htpasswd and .htaccess files for you, no need to go installing anything yourself.

 

Before you do that remember to rename the 'admin' folder to something unique, and edit the two references in admin/includes/configure.php from /admin/ to /newname/

 

Vger

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...