Protimus Posted November 15, 2011 Posted November 15, 2011 (edited) http://eathena.sourc...et/board/admin/ It's interesting to exchange at least the name of page. If wish, can improve security by adding a second password with htaccess. This help if the hacker get user password of any administrator or in exploit and injection problems. NOTE: In the old eAthena is possible get the administrator password by exploit cookies flaws and acess the admin page easily. Fix it here to avoid problems! Edited November 15, 2011 by Protimus 4
KeyWorld Posted November 15, 2011 Posted November 15, 2011 I Agree. ea.ws is a hole in security (a friend found my password two times in the past when he did a sql dump), don't reproduce the same error in this fresh new community.
Brian Posted November 15, 2011 Posted November 15, 2011 (edited) Thanks for the suggestion, I will take care of this. Edit: done Edited November 16, 2011 by Brian
Recommended Posts