Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Should The iadmin directory be password protected?


kwalker

Recommended Posts

Hello all,

 

I was wondering if it's a good idea to password protect the whole /iadmin/ directory or should the index.php file be protected?

 

It's working fine on my end, but I'm not sure if it's going to cause some pages/functions to not work correctly because of that.

 

Thank you all for your valued time.

 

Kevin

"What I didn't know yesterday, I know today & will remember tomorrow"

(By Kwalker)

 

What do you see when you open up the tep_database-pr2.2-CVS.pdf file that came with your osCommerce download?

Link to comment
Share on other sites

Thanks Jay,

 

I was working while I've protected it and everything seems ok, and working fine. Just wanted to be sure.

 

Thanks for your input.

 

Kevin

"What I didn't know yesterday, I know today & will remember tomorrow"

(By Kwalker)

 

What do you see when you open up the tep_database-pr2.2-CVS.pdf file that came with your osCommerce download?

Link to comment
Share on other sites

Just for the record, the whole admin folder should be password protected. Otherwise, it would be possible for someone to tweak the url to call the specific functions of the admin, bypassing the index.php file.

Rule #1: Without exception, backup your database and files before making any changes to your files or database.

Rule #2: Make sure there are no exceptions to Rule #1.

Link to comment
Share on other sites

We can't allow that to happen.

 

Thank you all for your input and advice.

 

Kevin

"What I didn't know yesterday, I know today & will remember tomorrow"

(By Kwalker)

 

What do you see when you open up the tep_database-pr2.2-CVS.pdf file that came with your osCommerce download?

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...