matt1 Posted April 20, 2005 Share Posted April 20, 2005 I'm worried about the security of the admin section of the site. I've been playing around with .htaccess files to protect the admin, but even once I get this working the admin will be accesssible from the net with username & pswd. Is this the generally accepted way of running the oscommerce admin or have i missed a major point in the setup? Am I supposed to have the admin running on a local server in some way? Regards Matt Link to comment Share on other sites More sharing options...
Guest Posted April 20, 2005 Share Posted April 20, 2005 there are many items on this, use an htaccess file (best) also admin access with levels contribution. this is generally the best way for htaccess Link to comment Share on other sites More sharing options...
♥Vger Posted April 20, 2005 Share Posted April 20, 2005 If you have a decent web hosting control panel then use the Password Protect or Directory Protection feature to Password Protect that directory. This feature writes the .htpasswd and .htaccess files for you, no need to go installing anything yourself. Before you do that remember to rename the 'admin' folder to something unique, and edit the two references in admin/includes/configure.php from /admin/ to /newname/ Vger Link to comment Share on other sites More sharing options...
matt1 Posted April 22, 2005 Author Share Posted April 22, 2005 Thanks for the advise. It's working fine now. Partly due to the local server address being wrong. Regards Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.