Awjvail
04-16-2008, 06:56 PM
Hi there,
Apparently (somehow) somebody got the MD5 hashes to all of my senior staff on my site.. I don't think they really did, but I'm just taking some precautions.
How can I restrict the access of the admincp + modcp to a list of allowed IPs?
Also is it possible to make it so that I don't have to update it everytime somebodies IP changes? Perhaps just restrict a part of the IP?
I know it's done through .htaccess - I just want to make sure it won't screw everything up.
What would be even better would be restricting even the login to the forums by IP... because a hacker can still do damage without admin or modcp access..
Apparently (somehow) somebody got the MD5 hashes to all of my senior staff on my site.. I don't think they really did, but I'm just taking some precautions.
How can I restrict the access of the admincp + modcp to a list of allowed IPs?
Also is it possible to make it so that I don't have to update it everytime somebodies IP changes? Perhaps just restrict a part of the IP?
I know it's done through .htaccess - I just want to make sure it won't screw everything up.
What would be even better would be restricting even the login to the forums by IP... because a hacker can still do damage without admin or modcp access..