Elvin M.

User

How to disable Access Management?

Autore: Elvin M.

Visite 1181, Followers 1, Condiviso 0

Parole Chiave: access,management,website x5 pro 2021.2

Hello,

I want to disable the Access Management option on my website. I delete the admin folder from the hosting, but when I export a project to webserver, it creates an admin folder again. How can I permanently disable this option? Thank you.

Postato il 12/05/2021 21:14:43

9 RISPOSTE - 2 UTILI - 1 CORRETTO

Elisa B.

Incomedia

Hello Elvin!

Thank you for getting in touch.

Do you mean the Online Control Panel you can access at www.yourwebsite.com/admin? In this case it isn't unfortunately possible to disable it, I am sorry!

Thanks! Kind regards.

Postato il 14/05/2021 08:01:06 da Elisa B.

Axel

User

And for security reasons it could be nice to have possibility to activate or not.

And also to have a personal path: like www.mysite.com/leb67_2/admin

Again for security reasons... because today anyone which know Website sturcture can try on internet any website name/admin to do an brute force attack.. the login page is always after the webserver name... !!

Postato il 14/05/2021 10:02:52 da Axel

Elvin M.

User
Autore

Thank you very much for your replies. Yes, I mean Online Control Panel which is accessible www.domain.com/admin. Would it cause a problem if I manually delete or rename admin folder in webserver?

Postato il 14/05/2021 14:51:24 da Elvin M.

Elvin M.

User
Autore

And can someone destroy the website by accessing the www.domain.com/admin link?

Postato il 14/05/2021 14:55:41 da Elvin M.

Axel

User

Yes by bruteforce attack, PHP issue/vulnerability, SQL injection bad coding and so more.....

Incomedia is a framework editor to generate HTML or PHP coding. But probably not expert in term of security coding.
A PHP / HTML expert/dev is not a security expert. It has been proved many times.

Not the same job.

Many tools exist today to check /secure coding...but does Incomedia is using one of them. Or does Incomedia has been trained to secure their code ? Which tools are theu used to test their code ?

Question is opened ?

It is always dangerous to have an access to a login page.

Postato il 14/05/2021 16:09:09 da Axel

Elvin M.

User
Autore

Thank you for your comprehensive information. Would it cause a problem if I manually delete or rename admin folder in webserver?

Postato il 15/05/2021 10:57:51 da Elvin M.

Axel

User

It's the alone solution today to block the admin login page.

Rename the folder... But don't forget to do that after each export.

Postato il 15/05/2021 12:13:38 da Axel

Elvin M.

User
Autore

Thank you very much.

Postato il 15/05/2021 12:54:02 da Elvin M.

Axel

User

Ok ... confirm the answer like OK and close the ticket...

Postato il 15/05/2021 13:11:08 da Axel