almostask8er Posted October 7, 2007 Share Posted October 7, 2007 Sorry for the double topic, I'm new here and as a beginner have a lot of issues to take care of... So basically the title says it all. On my oscommerce home page, it tells me the following message: "It is important to secure the Administration Tool as there is currently no security implementation available." But it doesn't tell me how. Would any of you know which files or setting I have to change in order to secure the administration tools? thx a bunch Link to comment Share on other sites More sharing options...
Jan Zonjee Posted October 7, 2007 Share Posted October 7, 2007 On my oscommerce home page, it tells me the following message: "It is important to secure the Administration Tool as there is currently no security implementation available." But it doesn't tell me how. If you use RC1 (the latest version) there is a security implemention (you have to login right?). There wasn't one in the versions before RC1. You had to password protect the admin are through a .htaccess file (Apache/*nix servers). Looks like Harald forgot to change that message. One simple additional measure to implement though is to rename the directory admin to something not easily guessable by hackers (one more hurdle to take). You only need to change the configure.php file in the admin to point to the renamed admin directory. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.