homepagewww.CraigRichards.com
Craig Richards Design 		search and site map
resume 		Contact Us
BigSender, AdminPro, Envirolyzer, Whois Search, Percenticon and other software by Craig RichardsCraig Richards' theatre, film and television credits 		News2Me
Design Services 		maintenance services
programming services

AdminPro User Guide
Sun iForce Partner  buy now | download | support | forum | user survey | user guide | testimonials | version history | news2me
AdminPro User Guide
User Guide
Table of Contents
Getting Started
  downloading
  configuring
  uploading
  running

Troubleshooting FAQ

Setting Preferences
  user preferences
  session preferences

Using AdminPro
  navigating
  debugging CGI
  managing files
    uploading
    downloading
    renaming
    permissions
    opening, editing & saving
    creating directories
    deleting / removing

Security

Distribution Policy
& User Licenses
  multi-user license

Buy Now

Support

Discussion Board

User Survey

News2Me

AdminPro User Guide

Augmenting AdminPro's Built-in Security

Whether your domain is on a dedicated or in-house server or your domain is on a remote server with a hosting firm, all users are obliged to maintain security protocols.

As powerful as AdminPro is, how can we be sure it doesn't get "into the wrong hands?" AdminPro features built-in IP Address-based access restriction, so that's the first step. Additionally, some users have used additional measures to control access to AdminPro as detailed below.
  1. Use AdminPro's built-in IP-address security. Open the "adminpro.txt" document locally in Notepad, SimpleText or other ASCII text editor. Scroll down to the User Preferences area and add your static IP Address as instructed then turn on (change from 0 to 1) the security variable. Read the details on setting User Preferences by clicking here.

  2. Never place a link to the "adminpro.cgo" program from a public page. Certainly, adding a bookmark in the browser on our computer is fine (as long as your computer isn't shared).

  3. Change the name of the "adminpro.cgi" application to another name. For example, you can place the program in a /cgi-bin/adminpro/ path and name it "index.cgi" if you like. Any other valid name for an executable will also thwart those who might guess you're using AdminPro on your domain.

  4. As in the previous step, place the "adminpro.cgi" application in a child directory of /cgi-bin/ and rename it. (For example /cgi-bin/admin/index.cgi) Then use .htaccess and .htpasswd files to allow access only to users who have logged in with a predetermined username/password.

    A handy freeware script I've recently discovered called "Access Denied" from Solution Scripts seems like a terrific choice for managing .HTAccess for a single or for multiple user access needs. Go to solutionscripts.com/warehouse/access_denied/ for more information about Solution Scripts' Access Denied tool.
TOP AdminPro is "IPLock Aware." IPLock features an admin login to control access to AdminPro and virtually any other web application whether written by us or another developer – Watch this site for the release of IPLock.
Document last modified: May 10, 2006
Site content © 1996–2008 Craig Richards. All rights reserved worldwide.