Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

"It is important to secure the Administration Tool as there is currently no security implementation available" yeah, but how?


almostask8er

Recommended Posts

Sorry for the double topic, I'm new here and as a beginner have a lot of issues to take care of...

So basically the title says it all. On my oscommerce home page, it tells me the following message:

"It is important to secure the Administration Tool as there is currently no security implementation available."

But it doesn't tell me how. Would any of you know which files or setting I have to change in order to secure the administration tools?

 

thx a bunch

Link to comment
Share on other sites

On my oscommerce home page, it tells me the following message:

"It is important to secure the Administration Tool as there is currently no security implementation available."

But it doesn't tell me how.

If you use RC1 (the latest version) there is a security implemention (you have to login right?). There wasn't one in the versions before RC1. You had to password protect the admin are through a .htaccess file (Apache/*nix servers). Looks like Harald forgot to change that message.

 

One simple additional measure to implement though is to rename the directory admin to something not easily guessable by hackers (one more hurdle to take). You only need to change the configure.php file in the admin to point to the renamed admin directory.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...