How best to secure admin directory?

Olivier B. nginx.list at daevel.fr
Fri Apr 9 06:12:09 MSD 2010


On 09/04/2010 03:47, Leonardo Crespo wrote:
> Morning guys!
>
> Can anyone help with best practice to secure an /portal/admin
> directory? A link to documentation will do just fine.
>
> Our website has and /admin directory which don't want to be accessible
> via www.domain.com/portal/admin. Instead, we want hackoff.domain.com
> to point to /portal/admin directory. If we could add authentication to
> hackoff.domain.com would be great too.
>    
I'm not sure it's a "great security". There is a lot of spywares in 
browsers (the Google Toolbar for example) which will inform about the 
used address.

> The point is some files on www.domain.com/* include (php include)
> files on /portal/admin, so this has to work internally.
>    
Outch. I hope your "php includes" doesn't use HTTP to load files...

> I searched the wiki and this website https://calomel.org/nginx.html
> (which is great too) but I couldn't figure out a way to do this.
>
> Any ideas are very welcomed.
>
> Cheers!
>
> _______________________________________________
> nginx mailing list
> nginx at nginx.org
> http://nginx.org/mailman/listinfo/nginx
>    




More information about the nginx mailing list