1 (edited by lhffan 2006-07-09 13:32)

Topic: Lock admin account to a specific ip

To make my site more safe it would be nice if it was possible to lock my admin account to my ip

127.0.0.1

And it would also be nice if it was possible to add dns adress like:
youaredumb.dyndns.ws

to the alowed list of ip´s

would that dont make the board more secure?

Edit: Can someone move the topic, posted in wrong section

Re: Lock admin account to a specific ip

lol

if you limit it to that ip nobody will be able to admin your site (unless you're sitting on the machine that hosts your website).

thats the loopback address of your local machine.

http://bindmaker.org/_ipaddress.php  <- thats your ip address

Re: Lock admin account to a specific ip

MadHatter wrote:

lol

if you limit it to that ip nobody will be able to admin your site (unless you're sitting on the machine that hosts your website).

thats the loopback address of your local machine.

http://bindmaker.org/_ipaddress.php  <- thats your ip address

I know what 127.0.0.1 is, i want it to be possible to do this if you have it on a webhost or if you have it on your local machine, i dont bother if noone can be admin besides me. We have one admin and several moderators. Moderators i do not want to have any ip block on only on administrator basic.

4

Re: Lock admin account to a specific ip

That could really screw up if your like me and have a dynamic Ip which like to change.

Re: Lock admin account to a specific ip

Thats i wrote in my first post about dns adresses.

Re: Lock admin account to a specific ip

lhffan wrote:

Edit: Can someone move the topic, posted in wrong section

To where would you like it moved?

Looking for a certain modification for your forum? Please take a look here before posting.

Re: Lock admin account to a specific ip

Feature requests I suppose tongue Although it fits better in here, as it won't be implemented.

Re: Lock admin account to a specific ip

why not.. it would improve security dramaticly if no users can use the admin account

Re: Lock admin account to a specific ip

Well, you can have multiple admins... and doing a DNS lookup on each pageload can slow it down quite a bit too =/

10

Re: Lock admin account to a specific ip

Yes i know. But it is possible to create a mod or hack that does it for one admin? One with static ip or with dns lookup?

Re: Lock admin account to a specific ip

Include this at the top of each admin page:

if($_SERVER['REMOTE_ADDR'] == "<your ip here>")
message("Sorry, this forum can only be administrated from one computer");

12

Re: Lock admin account to a specific ip

can moderators still moderate the forum then?

Re: Lock admin account to a specific ip

That's done through moderate.php, no?