View Full Version : Using .htaccess to limit access to /admin directory?
I tried to use a .htaccess file for the /admin Directory of pixeplost in order to somewhat increase the security of my pixelpost installation.
Now, if I try to add a comment I'm asked for credentials to access /admin.
Why does pixelpost need access to /admin in order to process a comment and is there a wayx to work around it?
Thanks a lot
When you are adding comment there shouldnt be any call to code from /admin dir.
Well, that's what I would have expected. But I wonder why I'm beeing asked for credentials then...? Funny thing is, even if I don't enter a user/password combination the comment get's posted.
Do you have any idea what might be wrong? Did you ever try putting an .htaccess in /admin?
Other solution can be rename the admin dir to some other known only for you.
Thanks GeoS, renaming /admin works.
Still, that's not quite what I wanted. And, since you said that there's no call to /admin if a comment is added, it seems like a bug to me. I only wonder if it's pp1.6 or me...?
If you can give us a link to your blog then I can check it out. IMHO That is your template issue or some other strange thing.
I guess you're right about the template. After a good night's sleep I just tried placing an .htaccess in the renamed /admin directory and when I added a comment nothing unexpected happened, eg. no credentials were asked.
So now I'll go hunting through the template ,->>
Thanks for your patience and help!!
vBulletin® v3.7.3, Copyright ©2000-2013, Jelsoft Enterprises Ltd.