theflurys Posted September 1, 2006 Posted September 1, 2006 hello everone, please help me to see how my site is and give me honest feedback, let me know what you think or what i could add to make it better. thank you christine www.nameitprintit.com/catalog --------------------------- Made link Clickable Andrew
Guest Posted September 3, 2006 Posted September 3, 2006 hello everone, please help me to see how my site is and give me honest feedback, let me know what you think or what i could add to make it better. thank you christine www.nameitprintit.com/catalog --------------------------- Made link Clickable Andrew Not sure how to do it myself but your Admin section is wide open. I can get in there and make changes if I was malicious. ;) Mine is wide open too :( maybe someone here can point out how to secure it.
johnny2good Posted September 3, 2006 Posted September 3, 2006 Hello, I'm new at this website stuff...I trying to use the free template...can you help me
muskokee Posted September 3, 2006 Posted September 3, 2006 Secure your admin through your website cpanel. Should be called "Web Protect". Sheri
Guest Posted September 5, 2006 Posted September 5, 2006 Hi Your ADMIN is still WIDE OPEN, I can access it!
nicangeli Posted September 5, 2006 Posted September 5, 2006 yes someone help us please? you could try, http://www.oscommerce.com/community/contri...ch,secure+admin i have never used it
♥FWR Media Posted September 5, 2006 Posted September 5, 2006 you could try, http://www.oscommerce.com/community/contri...ch,secure+admin i have never used it Christine The most important constructive criticism I can give is that your site says it is SSL but it's not. Ultimate SEO Urls 5 PRO - Multi Language Modern, Powerful SEO Urls KissMT Dynamic SEO Meta & Canonical Header Tags KissER Error Handling and Debugging KissIT Image Thumbnailer Security Pro - Querystring protection against hackers ( a KISS contribution ) If you found my post useful please click the "Like This" button to the right. Please only PM me for paid work.
theflurys Posted September 5, 2006 Author Posted September 5, 2006 Christine The most important constructive criticism I can give is that your site says it is SSL but it's not. hello, i havent installed the ssl on my site yet i dont know how, i have a go daddy ssl certificate, its just not workin yet.
theflurys Posted September 5, 2006 Author Posted September 5, 2006 Secure your admin through your website cpanel. Should be called "Web Protect". Sheri i do not see anything that says web protect? is it in the ftp?
♥Vger Posted September 5, 2006 Posted September 5, 2006 The link may be called Directory or Password Protection. Vger
♥Vger Posted September 5, 2006 Posted September 5, 2006 Your ssl cert is issued to favorsforfun.com and not to the domain you are using it on. Looks like someone has tried to be funny already - unless it was yourself that changed the name of your site from osCommerce to Must Secure Admin. Before you password protect the admin folder do this: FTP to your website and rename the admin folder to something unique (not newadmin or admin2), and then in admin/includes/configure.php change the references to /admi/ to /newname/ After you have done that then you can password protect the newly renamed admin folder. Vger
Guest Posted September 8, 2006 Posted September 8, 2006 Here is how to secure any folder on your sites ;) This tutorial is for an Apache webserver on a Linux platform. The source of my info comes from here and I can verify it is good because I used it to secure my Admin directory. After you have read that article, simply copy the sample code that was given for the .htaccess file into the file that is in the Admin directory on your site. I found the full server path by going to the 'backup' section in my own admin interface. There, I found the path I needed to put in the .htaccess file. Then, create another file named .htpasswd in the directory you just entered. I had no option of placing this file above the root of my site because GoDaddy does not allow my access to this with shared hosting. So, I placed mine in a directory that I could access..no big deal. Inside the .htpasswd file, you create the username/password combo just as the article states. Here, you can generate the encrypted password. Thats it! I will be glad to answer any emails regarding this. GOOD LUCK ALL
kogepan Posted September 8, 2006 Posted September 8, 2006 i think for the time being you should change the directory name. From /admin---> /somethingdif and something weird so people cant access it while you work on securing it. :)
Rachael w. Posted September 10, 2006 Posted September 10, 2006 This contrib seemed to work well for me "Secure Admin Login-Logout_1_4" I tried to take a peak at your site but your images were down, maybe your working on it.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.