Secure admin panel

[bigoboy]

If your site was ever exploited in the way that the admin details are gave up to where the user can access your admin panel and do whatever they want.

This is how i keep this from ever happening
TESTED AND FOUND NO ISSUES BY DOING THIS

create and .htacces file in your admin folder

Paste into folder

Code:

Order Deny,Allow
Deny from all
Allow from your ip address here

Change the ip address as needed

[nitramf]

This is not the solution. I have a dynamic IP. Maybe you can make another .htaccess file?

[bplex]

The file that he created only works with static and semi-static IP addresses. If you do not have one of those, then you are left with using the normal vShare username and password functions without any additional protection.

[hostonnet]

If you have cpanel control panel, you can set password for admin folder.

[bplex]

You can do that with any control panel, but that doesn't make it more secure. All that does is require a password on top of a password. Someone could easily brute force the HTTP Basic authorization and gain access to the panel. By restricting the panel to certain IP addresses, you can prevent such attacks.

[bigoboy]

my ip changes about every 3 to 5 days
Takes 5 seconds to change the ip in the file
So it does work for me
so 1 time i week i spend 30 seconds securing my panel

[nitramf]

dyndns.org could work or not?

[bob]

BigOBoy it works great! Thanks for the excellent post :)

[bplex]

dyndns.org could work or not?

No. Dydns is an inbound service, not outbound.

[grynmoors]

All I do is password protect the directory.