Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

My new store Feddback greatly appriciated


theflurys

Recommended Posts

Posted
hello everone, please help me to see how my site is and give me honest feedback, let me know what you think or what i could add to make it better. thank you christine

 

www.nameitprintit.com/catalog

 

---------------------------

Made link Clickable

Andrew

 

 

Not sure how to do it myself but your Admin section is wide open. I can get in there and make changes if I was malicious. ;)

 

Mine is wide open too :( maybe someone here can point out how to secure it.

Posted

Hi

 

Your ADMIN is still WIDE OPEN, I can access it!

Posted
you could try,

 

http://www.oscommerce.com/community/contri...ch,secure+admin

 

i have never used it

 

Christine

 

The most important constructive criticism I can give is that your site says it is SSL but it's not.

Posted
Christine

 

The most important constructive criticism I can give is that your site says it is SSL but it's not.

 

 

hello, i havent installed the ssl on my site yet i dont know how, i have a go daddy ssl certificate, its just not workin yet.

Posted
Secure your admin through your website cpanel. Should be called "Web Protect".

 

Sheri

 

i do not see anything that says web protect? is it in the ftp?

Posted

Your ssl cert is issued to favorsforfun.com and not to the domain you are using it on. Looks like someone has tried to be funny already - unless it was yourself that changed the name of your site from osCommerce to Must Secure Admin.

 

Before you password protect the admin folder do this:

 

FTP to your website and rename the admin folder to something unique (not newadmin or admin2), and then in admin/includes/configure.php change the references to /admi/ to /newname/

 

After you have done that then you can password protect the newly renamed admin folder.

 

Vger

Posted

Here is how to secure any folder on your sites ;) This tutorial is for an Apache webserver on a Linux platform.

 

The source of my info comes from here and I can verify it is good because I used it to secure my Admin directory.

 

After you have read that article, simply copy the sample code that was given for the .htaccess file into the file that is in the Admin directory on your site. I found the full server path by going to the 'backup' section in my own admin interface. There, I found the path I needed to put in the .htaccess file.

 

Then, create another file named .htpasswd in the directory you just entered. I had no option of placing this file above the root of my site because GoDaddy does not allow my access to this with shared hosting. So, I placed mine in a directory that I could access..no big deal.

 

Inside the .htpasswd file, you create the username/password combo just as the article states. Here, you can generate the encrypted password. Thats it!

 

I will be glad to answer any emails regarding this. GOOD LUCK ALL

Posted

i think for the time being you should change the directory name. From /admin---> /somethingdif and something weird so people cant access it while you work on securing it. :)

Posted

This contrib seemed to work well for me "Secure Admin Login-Logout_1_4"

 

I tried to take a peak at your site but your images were down, maybe your working on it.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...