mushmoosh Posted May 10, 2009 Share Posted May 10, 2009 Does anyone have a best practice for securing WHMCS? Specifically, the admin area? I have read to use .htaccess for a 2nd layer of password protection; however, I could not find specific instructions on how to implement this. Any ideas? 0 Quote Link to comment Share on other sites More sharing options...
chickendippers Posted May 10, 2009 Share Posted May 10, 2009 http://wiki.whmcs.com/Further_Security_Steps I don't think there's a special way to implement .htaccess protection on the admin area, just exactly the same as you would protect any directory. 0 Quote Link to comment Share on other sites More sharing options...
merlinpa1969 Posted May 10, 2009 Share Posted May 10, 2009 after renaming we use htaccess to limit the ip addresses that can connect using deny all allow xxx.xxx.xxx.xxx 0 Quote Link to comment Share on other sites More sharing options...
danield Posted May 10, 2009 Share Posted May 10, 2009 If you only connect from your home PC just deny all IP's and only allow yours. 0 Quote Link to comment Share on other sites More sharing options...
mushmoosh Posted May 10, 2009 Author Share Posted May 10, 2009 Thank you everyone for the valuable input.... Just one more input... If my IP Address is dynamic based on a standard ISP, then will that work? I am not sure how to add the correct IP address, in other words. 0 Quote Link to comment Share on other sites More sharing options...
AVeal Posted May 11, 2009 Share Posted May 11, 2009 I wouldn't recommend using deny all if you have a dynamic IP address. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.