It seems sha1 and salts implementation is weak? If yes I think there was proposed patch that was not accepted.
What are you thoughts on securing customers passwords? Admin password - simply use random 20 ascii characters
FOR SECURITY UN-PRO's only, like me
A relative simple way to effectively much better secure the Admin Access, and without the need, to re-name
the Admin Directory. Direct Access to the Admin Login Page is no longer possible for Visitors this way,
as it can be tested here: http://www.bigmax.ch/shop/admin/
To add my 2 Cents !
Ernie
---
Secure Admin URL OC v.2.x free, untested!
https://www.opencart.com/index.php?rout ... n_id=24045
Just change in the VqMod Header:
<name>Secure Admin</name>
to:
<id>Secure Admin</id>
to make it display it's title in VqMod Managers correctly.
--------------
Secure MyAdmin OC v.2.x paid, probably same Function as the 1.5.6.x Version linked below.
https://www.opencart.com/index.php?rout ... n_id=23969
---
SecureMyAdmin OC v.1.5.x free, as used in some of my Test Shops with great success.
https://www.opencart.com/index.php?rout ... n_id=15901
A relative simple way to effectively much better secure the Admin Access, and without the need, to re-name
the Admin Directory. Direct Access to the Admin Login Page is no longer possible for Visitors this way,
as it can be tested here: http://www.bigmax.ch/shop/admin/
To add my 2 Cents !
Ernie
---
Secure Admin URL OC v.2.x free, untested!
https://www.opencart.com/index.php?rout ... n_id=24045
Just change in the VqMod Header:
<name>Secure Admin</name>
to:
<id>Secure Admin</id>
to make it display it's title in VqMod Managers correctly.
--------------
Secure MyAdmin OC v.2.x paid, probably same Function as the 1.5.6.x Version linked below.
https://www.opencart.com/index.php?rout ... n_id=23969
---
SecureMyAdmin OC v.1.5.x free, as used in some of my Test Shops with great success.
https://www.opencart.com/index.php?rout ... n_id=15901
My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.
Who is online
Users browsing this forum: No registered users and 50 guests