Jump to content


This topic is now archived and is closed to further replies.


protecting directories

Recommended Posts


I am familiar with the cpanel, but my new host does not have that and i'm struggling to get my head around it.


I have still to sort out the site, so i don't want to block myself out of it, but i suppose i should secure it before i begin?


When i click on protect directories on my hosts panel i get the box below.


Do i secure catalog/admin or just catalog, or something completely different!!






apattern.co.uk Back

Add Protected Directory



Domain: apattern.co.uk




Manage Protected Directories


There are currently no protected directories for this domain.

Running a botched up version of  osCommerce Online Merchant v2.3.4 bootstrap with the dresscode theme installed, numerous add-ons, terrible coding, terrible website, but will have to make do until I have made up for my losses and can risk shutting down for a couple of weeks while I start all over again. - I did not install my program but am endeavouring to fix it with your help.

Share this post

Link to post
Share on other sites

rename the directory admin to something else.


Change the admin directory name in 2 places in


/newadmin dir name/includes/configure.php


Then password protect the new admin directory.


This is called security through obscurity.





Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile


Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.


For links mentioned in old answers that are no longer here follow this link Useful Threads.


If this post was useful, click the Like This button over there ======>>>>>.

Share this post

Link to post
Share on other sites

This is called security through obscurity.


To be fair to a noobie, the renaming of admin/ to somethingElse/ is "security through obscurity". That is, the admin directory no longer has a widely known name -- a hacker might have to do some digging or even social engineering to get the name.


The password protection is a further layer of protection, requiring another hoop to jump through (ID and password) to get to the Good Stuff. That's certainly not STO.

Share this post

Link to post
Share on other sites

I would also recommend adding osc_sec and IP Trap for additional protection.

Do or Do Not, there is no try.

Share this post

Link to post
Share on other sites