Results 1 to 4 of 4

Secure admin backend.. Help and/or ideas pleassee

This is a discussion on Secure admin backend.. Help and/or ideas pleassee within the osCMax v1.7 Installation forums, part of the osCmax v1.7 Forums category; Hi guys, I really want to shield my admin backend from the outside world, and was wonderring if anyone can ...

      
  1. 07-25-2004, 10:37 PM #1
    edgecrush3r
    edgecrush3r is offline
    Lurker
    Join Date
    Jul 2004
    Posts
    2
    Rep Power
    0

    Default Secure admin backend.. Help and/or ideas pleassee

    Hi guys,

    I really want to shield my admin backend from the outside world, and was wonderring if anyone can help me with the ideas behind it.

    I've setted up SSL and apache correctly, and moved the Admin directory into its own virtual_host definition so I can have my own entry sayin: https://admin.myshop.com.

    This all works fine, but I really want to limit the access rights by either secure login and/or certificate based IP restriction. Right now I dont even get an Login page, to get to the Admin backend .

    1) Does anyone know how to create SSL-certificates that are only granting certain IP's ?
    2) How do I enable the admin login ?


    Thanks,
    edgecrush3r.
  2. 07-26-2004, 07:25 AM #2
    jpf
    jpf is offline
    osCMax Testing Team
    jpf's Avatar
    Join Date
    Sep 2003
    Location
    Manitoba, Canada
    Posts
    2,688
    Rep Power
    22

    Default

    Do you have MS2-MAX installed? It has it's own user login built into it.

    as for restricted access look up about using HTACCESS and such (not an OSC thing - but a general web SERVER based access restriction)

    Good Luck
    JPF - osCMax Fourm Moderator - To contact, post on the forum or click here
    Try out our osCMax at: Live Catalog Demo
    Limited access Admin: Live Admin Demo
    Feel free to add products they way you want and then purchase them -=+=- Sorry nothing will be billed or shipped!
  3. 07-26-2004, 05:09 PM #3
    makemethis
    makemethis is offline
    Active Member
    Join Date
    Jun 2004
    Location
    Glued to Computer Chair
    Posts
    108
    Rep Power
    0

    Default

    I would change the folder admin to another name also...which means setting up the admin config to match... FYI - I use the HTACCESS, the MS2-MAX login and with the admin area in SSL... works fine
    True Meaning of Lost: Building a web site without knowledge or skill

    True Meaning of Crazy: Building a web site anyhow

    The Net Results: Never needing a comb again

    www.MakeMeThis.com
  4. 07-31-2004, 01:52 AM #4
    edgecrush3r
    edgecrush3r is offline
    Lurker
    Join Date
    Jul 2004
    Posts
    2
    Rep Power
    0

    Default

    Thanks guys,

    I've been able to set-up the admin directory in an complete different Virtual-Host, with SSL, next to that I use the Apache "Allow from IP-XXXX" and a basic authentication pop-up.

    I guess this should block most attacks next to my firewall setup.
« MSNBot? 207.46.98.39 | Need to change server information - NEWBIE - Please help »

Similar Threads

  1. secure admin, shared ssl, re-directed to login
    By avibodha in forum osCmax v2 Installation issues
    Replies: 5
    Last Post: 07-03-2006, 01:46 PM
  2. Affiliate link secure non-secure
    By kwiznoz in forum osCmax v2 Installation issues
    Replies: 6
    Last Post: 08-28-2005, 02:08 PM
  3. secure and none secure items ?
    By pete76uk in forum osCommerce 2.2 Installation Help
    Replies: 3
    Last Post: 10-12-2004, 02:51 PM
  4. Need Images to Display in Secure Admin
    By Walter in forum osCommerce 2.2 Modification Help
    Replies: 0
    Last Post: 11-09-2003, 04:53 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules