Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Guest can browse the admin page.


peppers

Recommended Posts

Posted

I osCommerce version is 2.2 ms1, after install. The guest can browse and modify admin pages directly. My admin tools directory is http://mydomain/catalog/admin , at this time everyone can use that.. :(

What can i solve this security risk? Any veteran help me? I'am a rookie, thanks!!!!!! :oops:

Posted

Secure up the directory. If you don't know how...start reading up on .htaccess (if you are using linux/apache)

 

http://javascriptkit.com/howto/htaccess.shtml

 

You may be able to secure the directories thru your control panel (if you have one). If you dont know what i'm talking about, i'd ask your hosting provider for some help on securing the directory.

Posted

Password protect the directory, either using tools in your host's control panel (or equivalent) or by using a .htaccess file.

In olden times the men were made of iron and the ships were made of wood; now it's the other way around. :wink:

Posted

Very useful tips, so thanks all veteran: :o

 

but i feel sorry, i don't know what type control panel on my server.. (because i am rookie :( ) :oops: I think i need use notepad create .htaccess, and .htpasswd. I see introduction document already, is very useful. but step is not cleanly. Who Veteran can teach me procedure to do that, i will thanks faithfully :oops:

Posted
Very useful tips, so thanks all veteran: :o

 

but i feel sorry, i don't know what type control panel on my server.. (because i am rookie :( ) :oops: I think i need use notepad create .htaccess, and .htpasswd. I see introduction document already, is very useful. but step is not cleanly. Who Veteran can teach me procedure to do that, i will thanks faithfully :oops:

 

I'm not sure i can make the instructions any clearer than the one's on this page:

http://javascriptkit.com/howto/htaccess3.shtml

 

I'd suggest you ask your hosting provider to lock up the appropriate directory.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...