Post by Rockarollaman » Fri Feb 23, 2018 4:04 pm

Hey Dear People
First of all thanks for your time and answers.
I've got a website done by a company.The admin panel they use ( as I assume) is Version 1.0. It also could be a hybrid system.
As I noticed from my cpanel, I see many different ips trying to reach the url " /admin."
Is there any extensions or solutions that I can use to avoid this. Thanks a lot folks.

Newbie

Posts

Joined
Fri Feb 23, 2018 3:55 pm

Post by IP_CAM » Sat Feb 24, 2018 12:54 am

Well, the most simple way would be, to add one of the Mod's below.
Then, a 'regular' access to the Admin Login Page is no longer possible,
and any attempt to access Admin will be rerouted to the Front Site again.
Still, no admin FOLDER Move is required, and everything will work as before.
You can try this here, and see, what happen, I slightly modified the Code, to
redirect to the front index page and not to an error Page, as done by default.
http://www.bigmax.ch/shop/admin
The Mod's all work more or less the same way, use, what you like best!
Good Luck! ;)
Ernie
---
[VQMOD] SecureMyAdmin
https://www.opencart.com/index.php?rout ... n_id=15901
---
Change admin url
https://www.opencart.com/index.php?rout ... n_id=27076
---
Simple Login Security
https://www.opencart.com/index.php?rout ... n_id=21371
---
secureMyAdmin - Login Addon
https://www.opencart.com/index.php?rout ... n_id=17247
---
(VQMOD) Secure Admin URL OC v..2.x only
https://www.opencart.com/index.php?rout ... n_id=24045
---
Image

Attachments

secure_admin.jpg

secure_admin.jpg (39.63 KiB) Viewed 1568 times


Ernie's OpenCart v.1.5.6.5 LIGHT + V-Pro + OpenShop Admin v.1.75 Test Sites
http://www.bigmax.ch - http://www.opencart.li/shop/
Image


User avatar
Guru Member

Posts

Joined
Tue Mar 04, 2014 1:37 am
Location - Switzerland

Post by Johnathan » Sat Feb 24, 2018 5:08 am

You could also use an htpasswd on that directory, so that only you can access it.

Image
Image Image Image Image Image Image


User avatar
Global Moderator

Posts

Joined
Fri Dec 18, 2009 3:08 am


Post by straightlight » Sat Feb 24, 2018 5:38 am

Is there any extensions or solutions that I can use to avoid this. Thanks a lot folks.
Yes, there is: https://www.opencart.com/index.php?rout ... on_id=4773
You could also use an htpasswd on that directory, so that only you can access it.
While this analogy is true, htpasswd is still vulnerable to CSRF attackers since it does not use a strong algorithm to protect its folders.

The most generated errors being found on Opencart forum originates from contributed programming.

Regards,
Straightlight


Legendary Member
Online

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON
Who is online

Users browsing this forum: No registered users and 8 guests