Best practice for securing the Umbraco back office
Given that you can normally guess its default urI, is there any recommended way of securing the Umbraco back office? changing the login url, restricting back office login to certain ip addresses, running under https etc
It's not exactly what I'm asking for as I want to leave the back office open for bona fide users while reducing the chance of someone hacking the site. However there is some useful info in the link that will help towards that end.
I'd be interested to know what measures (if any) people on this forum use on their sites to add extra security to the back office.
Best practice for securing the Umbraco back office
Given that you can normally guess its default urI, is there any recommended way of securing the Umbraco back office? changing the login url, restricting back office login to certain ip addresses, running under https etc
Hi Graeme,
Try take a look at this thread, https://our.umbraco.org/forum/umbraco-7/using-umbraco-7/72207-disabling-access-to-umbraco-backoffice I think that it does what you are asking for.
Hope this helps,
/Dennis
Thanks Dennis
It's not exactly what I'm asking for as I want to leave the back office open for bona fide users while reducing the chance of someone hacking the site. However there is some useful info in the link that will help towards that end.
I'd be interested to know what measures (if any) people on this forum use on their sites to add extra security to the back office.
Graeme
is working on a reply...