SOLVED: Secure your admin by IP address filtering

« 
Previous topic
|
Install & configuration
|
Next topic
 »
Author Message

Andreas Kaiser

Thursday 05 March 2009 4:38:32 am

Hi,

One of our clients (with uri configuration) wanted to limit the access to administration interface to their company IPs (fixed).

So we added to the vhost file following lines:

        <Location /admin_site_access_name>
                Order deny,allow
                Deny from all
                Allow from 10.1.0.128/27 # internal IP range of customer
        </Location>

Original author: http://rimann.org/blog/2008/10/secure-your-typo3-backend-by-ip-address-filtering/

In our servers this configuration is working and should be compatible with other ez publish installations, but of course we can't ensure this works for all installations...

eZ Partner in Madrid (Spain)
Web: http://www.atela.net/

Genri Moshkovich

Thursday 05 March 2009 5:09:42 am

Nice solution! Can be useful for our projects...

Thanks, Andreas!

Best regards,
Genri Moshkovich

Jean-Yves Zinsou

Thursday 05 March 2009 6:14:21 am

Hi there,

Please note that this is a apache config, so it checks the part of the url just after the host name without knowing if it is a physical folder or a site access.
2 cases :
1 - ez running in virtual host mode :
http://<hostname>/<siteaccess>

-> works fine

2- ez running in uri mode:
http://<hostname>/<folder>/index.php/<siteaccess>

-> Wont work

Just to avoid further posts asking why their uri mode ez installation not working with this setting.
;-)

Do Androids Dream of Electric Sheep?
I dream of eZpubliSheep....
------------------------------------------------------------------------
http://www.alma.fr

Andreas Kaiser

Thursday 05 March 2009 6:23:28 am

Thanks Jean-Yves,

You are 100% right, sorry for not posting a more deeper explanation...

eZ Partner in Madrid (Spain)
Web: http://www.atela.net/
Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.

eZ debug

Timing: Jan 31 2025 00:38:15
Script start
Timing: Jan 31 2025 00:38:15
Module start 'layout'
Timing: Jan 31 2025 00:38:15
Module start 'content'
Timing: Jan 31 2025 00:38:15
Module end 'content'
Timing: Jan 31 2025 00:38:15
Script end

Main resources:

Total runtime0.5401 sec
Peak memory usage8,192.0000 KB
Database Queries62

Timing points:

CheckpointStart (sec)Duration (sec)Memory at start (KB)Memory used (KB)
Script start 0.00000.0038 588.3828151.2422
Module start 'layout' 0.00380.0034 739.6250220.7500
Module start 'content' 0.00710.5322 960.37504,505.0859
Module end 'content' 0.53930.0007 5,465.460911.7969
Script end 0.5400  5,477.2578 

Time accumulators:

 Accumulator Duration (sec) Duration (%) Count Average (sec)
Ini load
Load cache0.00290.5451160.0002
Check MTime0.00110.2074160.0001
Mysql Total
Database connection0.00060.113710.0006
Mysqli_queries0.456884.5789620.0074
Looping result0.00040.0787600.0000
Template Total0.499392.520.2497
Template load0.00200.371320.0010
Template processing0.497392.077920.2486
Template load and register function0.00130.240210.0013
states
state_id_array0.00090.175710.0009
state_identifier_array0.00050.096320.0003
Override
Cache load0.00170.3197310.0001
Sytem overhead
Fetch class attribute can translate value0.00160.295730.0005
Fetch class attribute name0.00210.391470.0003
XML
Image XML parsing0.00380.694530.0013
class_abstraction
Instantiating content class attribute0.00000.002580.0000
General
dbfile0.00460.8559270.0002
String conversion0.00000.001240.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

UsageRequested templateTemplateTemplate loadedEditOverride
1node/view/full.tplfull/forum_topic.tplextension/sevenx/design/simple/override/templates/full/forum_topic.tplEdit templateOverride template
4content/datatype/view/ezimage.tpl<No override>extension/sevenx/design/simple/templates/content/datatype/view/ezimage.tplEdit templateOverride template
4content/datatype/view/ezxmltext.tpl<No override>extension/community_design/design/suncana/templates/content/datatype/view/ezxmltext.tplEdit templateOverride template
8content/datatype/view/ezxmltags/paragraph.tpl<No override>extension/ezwebin/design/ezwebin/templates/content/datatype/view/ezxmltags/paragraph.tplEdit templateOverride template
1content/datatype/view/ezxmltags/literal.tpl<No override>extension/community/design/standard/templates/content/datatype/view/ezxmltags/literal.tplEdit templateOverride template
3content/datatype/view/ezxmltags/line.tpl<No override>design/standard/templates/content/datatype/view/ezxmltags/line.tplEdit templateOverride template
1print_pagelayout.tpl<No override>extension/community/design/community/templates/print_pagelayout.tplEdit templateOverride template
 Number of times templates used: 22
 Number of unique templates used: 7

Time used to render debug report: 0.0001 secs