I Can access the admin area without a password and

[korfx04@s]

I Installed this script lastnight so i may have done somthing wrong

I Can access the admin area without a password and username!

 

How can i fix this?

[♥Vger]

This is how the osCommerce default install is set up. You need to use the Password Protection feature in your web hosting control panel to apply password protection to the admin folder.

 

Vger

[niknakgroup]

The standard osc download does not have any security on the admin area. There are a varietyu of fixes for this, dependant very much on your knowledge levels and just how secure you want it to be. One of the most common methods is to use .htpassword and .htaccess, but a very simple method I have seen used many times is to change the name of the admin folder to something obscure such as h2evbw or something, this means only somebody knowing the name of that folder can access it. Search the contribs and the knowledge base and you will find a quick and easy solution to suit you.

[Guest]

The simplest way to fix this, (and i'm sure least secure) but none the less simplest way. Is to rename the admin folder, and change the references to it in configure.php

 

Vger has allready educated me on this aspect, and if you search the forums you will find her very good instruction on how to do this.

 

All the best,

 

Gary.