Forum Home Kayako Register Customer Area Sales Bugs Forum Rules Search Today's Posts Mark Forums Read

Go Back Kayako Community Forums Customization Developers & Code Kayako Login Security
Kayako logo
Developers & Code Interested in customizing your Kayako products? Discuss modifications and develop your own mods with the community.

Reply
 
LinkBack Thread Tools Search this Thread Rate Thread Display Modes
  (#1) Old
GoneShootin Offline
Member
 
GoneShootin's Avatar
 
Posts: 190
Join Date: Jan 2008
Kayako Login Security - 28-07-2008, 11:13 AM
I've been thinking about the logins security and ways of locking down access. One thing that came to mind was the implement IP based access, for example in the index.php files for /staff and /admin I added to the top:

PHP Code:
if($_SERVER[REMOTE_ADDR]!="--my trusted ip---")
  die("Error! You are not coming from a trusted location"); 
Such that if someone is not coming from the IP address then they cannot access the index login screens.

While the IP address can spoofed is there something I need to be aware of with this setup?
   
Reply With Quote
  (#2) Old
craigbrass Offline
Senior Member
 
Posts: 5,740
Join Date: Jun 2005
Location: Cumbria, UK
28-07-2008, 01:01 PM
Limit Windows Application Login to Specific IPs could be used fine with the same result for /staff and /admin login pages.

Craig Brass - Kayako Forum Squatter (Note: I am NOT a staff member)

Icon Headquarters - Its Elixir - Web2Messenger
   
Reply With Quote
  (#3) Old
John Haugeland Offline
Developer
 
John Haugeland's Avatar
 
Posts: 619
Join Date: Dec 2007
Location: Idaho
28-07-2008, 10:20 PM
It really is best to do things like that in .htaccess, rather than in PHP, due to the need to replace them during upgrade.

John Haugeland (john.haugeland ]at[ kayako.com)
-------------------------------------------------------------------
   
Reply With Quote
Reply

« Stop staff replies showing in emails... | Filter Views [hide per dept] »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Paid Kayako WHMCS LoginShare module v0.0.2 Explovision Modifications & Addon Releases 9 01-09-2008 01:53 AM
how to you login to kayako from public computer security jnet SupportSuite, eSupport and LiveResponse 5 17-04-2008 01:44 PM
How to remove all Kayako references from Staff and Admin Login Footer jones How do I? 6 16-12-2007 01:03 PM
Tickets not closing unless we login to Kayako Mikie SupportSuite, eSupport and LiveResponse 6 06-12-2007 06:52 PM
Kayako WHMCS LoginShare Module Explovision Offers 15 04-12-2007 01:31 PM



Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.2.0
vBulletin Skin developed by: vBStyles.com

Contact Us - Help desk software - Archive - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46