Jump to content

Video: WHMCS Security Checklist

zomex
 Share

Recommended Posts

SimpleSonic Member

SimpleSonic

Posted
Posted

Good info for beginners!

Another thing admins should do if they access WHMCS from a static IP address, is lock down the admin folder using .htaccess to allow access from their static IP address only.

Edit the .htaccess file in the root of your WHMCS admin folder and add the following: 

allow from xxx.xxx.xxx.xxx
deny from all

Replace xxx.xxx.xxx.xxx with the static IP address of the device you want to allow access to the WHMCS admin area.

If you have multiple admins/agents accessing the WHMCS admin area and they also have static IP addresses, you can add additional lines (allow from xxx.xxx.xxx.xxx) for each admin/agents static IP address .

Note: Do not use the above if you or any others are accessing the WHMCS admin area from a dynamic IP address.

0
Link to comment
Share on other sites
zomex Senior Member

zomex

Posted
  • Author
Posted
On 5/20/2023 at 6:44 PM, ResellerWiz said:

Good info for beginners!

Another thing admins should do if they access WHMCS from a static IP address, is lock down the admin folder using .htaccess to allow access from their static IP address only.

Edit the .htaccess file in the root of your WHMCS admin folder and add the following: 

allow from xxx.xxx.xxx.xxx
deny from all

Replace xxx.xxx.xxx.xxx with the static IP address of the device you want to allow access to the WHMCS admin area.

If you have multiple admins/agents accessing the WHMCS admin area and they also have static IP addresses, you can add additional lines (allow from xxx.xxx.xxx.xxx) for each admin/agents static IP address .

Note: Do not use the above if you or any others are accessing the WHMCS admin area from a dynamic IP address.

That's good advice.

I did touch on using a directory password which is suitable for those with a dynamic IP:

 

0
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated

  I accept