Secure WHMCS Admin Area

[l0calh0st]

Hello, after a chat with .mac I find out a way to secure WHMCS admin area.

First of all, always rename the "admin" folder to something else, example: "blabla"
Also edit this in configuration.php

Then create .htaccess file with the following content:

Order Deny,Allow
Deny from all
Allow from 22.222.22.222
Allow from 22.222.22.222
Allow from 22.222.22.222
Allow from 22.

Allow from 22.222.22.222, allows access from 22.222.22.222
Allow from 22., allows access from 22.x.x.x.x.x

Cheerz

 

[BlaZe]

Very great tip indeed

 

[desiboy]

dunno why this thread is in development area..this should be in server security area
on a side note..use this only if you have a static IP address :D
or you may endup in blocking yourself !

 

[intensecool]

Fairly old but really useful.

$customadminpath = "myadminname";
Replace "myadminname" above with the new name you just gave to your admin folder.
Please note that if you have already created a cron job, or one has been created for you, you will need to update the path on the cron as well.

Example: php -q /home/mylogin/public_html/secure/myadminname/cron.php

 

[Devilz]

This is Quite Old trick !
Old Topic Bumped off !

 

[newuploader]

might be old, but helpful to me.. thanks

 

[l0calh0st]

Your welcome