MyBB

Paul H. · 2011-12-17, 03:41 PM

This tutorial will show you how to add the best layer of security to your admin directory that you possibly can: Apache htpasswd.

To start, log into cPanel, and find the Security Section. Click "Password Protect Directories"

[Image: d5UJ.png]

On the next page, click the directory you want to protect.

Next, enter in the user and password information. Be sure to click the "Password protect this directory" checkbox.

[Image: d5UW.png]

Click "Add/modify authorized user".

Tada!

TheGarfield · 2011-12-17, 04:24 PM

I use this for a long time now, I've also protected 'inc/' folder, you know, there are some plugins there and we never know what those plugins contain...

Nathan Malcolm · 2011-12-17, 04:43 PM

(2011-12-17, 04:24 PM)TheGarfield Wrote: I use this for a long time now, I've also protected 'inc/' folder, you know, there are some plugins there and we never know what those plugins contain...

As plugins hook onto the core system and aren't directly executable, that isn't necessary.

crazy4cs · 2011-12-17, 04:47 PM

This user has been denied support.

I use this as well, IMO the one of the best protection one can ever get.

John J. · 2011-12-17, 07:42 PM

This user has been denied support.

Good!, Thanks for sharing this information.

FooFighter · 2011-12-17, 08:13 PM

So when I access the acp I would have to...

- enter my forum username/password
- enter the username/password I created in my control panel

?

---------------------------------------------------------

We can also rename our admin directory as well as using this?

Thanks

Paul H. · 2011-12-17, 08:23 PM

You will need to enter the username and password you made above, then enter your forum details at the ACP login.

You can rename your admin dir, yes.

FooFighter · (This post was last modified: 2011-12-17, 11:14 PM by FooFighter.)

Oh ok, thanks man Smile

How come it only asked for me to enter in the username and password once when going to my admin panel, and when I log out and log back into it it only asks for my regular admin username/password?

Shouldn't ask every time?

* I didn't check the "remeber this password" check box upon logging in so was wondering if we only log in once and forever?

crazy4cs · 2011-12-18, 09:01 AM

This user has been denied support.

(2011-12-17, 08:32 PM)FooFighter Wrote: How come it only asked for me to enter in the username and password once when going to my admin panel, and when I log out and log back into it it only asks for my regular admin username/password?

Shouldn't ask every time?

Your question is only your answer.

When you went there for first time, you were already logged in your ACP, so it just asked htaccess pw, when you logout, it takes you to ACP's index as well but as you're not logged in, it asks for details again.

Login
Username:
Password:	Lost Password?
	Remember me