Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Post Installation Help
Author Message
keithdubya
New Member
New Member


Joined: Jul 04, 2011
Posts: 13

PostPosted: Fri Jul 08, 2011 9:18 pm Reply with quote

I have a fresh Ravennuke install.
It looks like admin.php is accessible to to Anonymous (not logged in users.)

That can only lead to pain and suffering.

What did I do wrong? Can file permissions do that? How can I secure it again. Did I miss something in the install?


HELP

Keith
 
View user's profile Send private message
Palbin
Site Admin


Joined: Mar 30, 2006
Posts: 2583
Location: Pittsburgh, Pennsylvania

PostPosted: Fri Jul 08, 2011 9:42 pm Reply with quote

Not really sure what you are trying to say. Do you mean it is no longer asking you for a user and password BEFORE you can login as an admin? If so this is setup via nuke sentinel.

_________________
"Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." — Brian W. Kernighan. 
View user's profile Send private message
keithdubya
PostPosted: Fri Jul 08, 2011 9:44 pm Reply with quote

Yes that is what I mean. The admin module can be accessed by people that are not even logged in.

I will take a look in the nuke sentinel config. I am new to Ravennuke, I was using php-nuke 8.0 prior to this.

Keith
 
keithdubya
PostPosted: Fri Jul 08, 2011 9:47 pm Reply with quote

I am looking in the nuke sentinel admin panel, and I do not see anywhere that I can limit access to admin.php. Am I looking in the wrong area. Did I miss the Sentinel config?

Keith
 
keithdubya
PostPosted: Fri Jul 08, 2011 10:12 pm Reply with quote

It just fooled me. I was logged in as an admin but not a normal user. Sorry for the alarm and thanks for the help.

Keith
 
killing-hours
RavenNuke(tm) Development Team


Joined: Oct 01, 2010
Posts: 438
Location: Houston, Tx

PostPosted: Sat Jul 09, 2011 7:59 am Reply with quote

keithdubya wrote:
I am looking in the nuke sentinel admin panel, and I do not see anywhere that I can limit access to admin.php.


Actually Keith, you can with "Admin Auth" under the general settings of N.S. This will protect your admin.php as it requires a server level login prior to the admin.php login.

Also... Here is the topic I started the first time I setup Admin Auth. Might help you out. Only registered users can see links on this board! Get registered or login!

P.s. make sure you're logged in as the superadmin. Wink

_________________
Money is the measurement of time - Me
"You can all go to hell…I’m going to Texas" -Davy Crockett 
View user's profile Send private message
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Post Installation Help

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©