You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Title: Potential Security Vulnerability: Admin Panel Accessible via Direct URL
Hi!
First of all, thank you for your hard work on this project.
I noticed that after attempting to block access to the admin panel, it is still accessible via a direct URL like https://admin.panel.ru/index.php/admin/. This raises a potential security concern since the admin panel shouldn't be accessible to the public by default, as it might be prone to brute-force attacks or unauthorized access attempts.
Could you provide some insight on how to securely restrict access to the admin panel? Are there any recommended practices for handling this within the framework to ensure that the admin interface is only accessible by authorized users?
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Orchid
-
Title: Potential Security Vulnerability: Admin Panel Accessible via Direct URL
Hi!
First of all, thank you for your hard work on this project.
I noticed that after attempting to block access to the admin panel, it is still accessible via a direct URL like https://admin.panel.ru/index.php/admin/. This raises a potential security concern since the admin panel shouldn't be accessible to the public by default, as it might be prone to brute-force attacks or unauthorized access attempts.
Could you provide some insight on how to securely restrict access to the admin panel? Are there any recommended practices for handling this within the framework to ensure that the admin interface is only accessible by authorized users?
Thanks for your help and guidance!
Beta Was this translation helpful? Give feedback.
All reactions