From Proxscripts Documentation
Revision as of 07:45, 7 April 2016 by Maksa (talk | contribs)
Jump to: navigation, search

It is always good to have proper security measures in place for any script or software. We recommend implementing the following security steps in order to have additional security for your script/website.

  • Static IP Settings – If you are a single admin and using a Static IP, then it is better to enable Static IP option so that no one else can login to your account apart from you.Kindly follow these steps for the same:
    • Open AdminPanel
    • Click On Settings

    • Click On Security Settings
      •
    • Select Use Static IP :Yes
      •
    • Click on "Update"
      •
  • 2-step Authentication – You can use Google’s 2-Step Verification, which is a latest and safest security measure.Kindly follow these steps for the same:
    • Open Adminpanel
    • Click On Settings

    • Click On Security Settings
      •
    • Click On 2-Step Verification Settings
      •
    • Select Enable Google 2-Step Verification: Yes
      •
    • There are two ways to Google 2-Step Verification:
      1) QR Code
      2) Secret Key
    • If you want to use Scan A Image "Select A Means To Set Up Google 2-Step Verification": QR Code
    • Enter Admin Password : Enter your Admin Password here
      •
    • Click on Update

      • Download Of Google Authenticator App Available for Android, iOS and Windows. Click on the below respective operating system to download the App.


    • Steps to Follow to Scan Image in Device:
      • In the Application, click on the top Right hand side
      • Click On Set Up Account
      • Click A Scan a barcode
      • Now, put your device in front of the Image and scan the image.

    • Enter The Code Generated Here  : You need to enter the code that is generated after scanning the image here

    • Click on Update

    • If you want to use Secret Key "Select A Means To Set Up Google 2-Step Verification" : Secret Key
    • Enter Admin Password  : Enter your Admin Password here
      •
    • Click on Update

      • Download Of Google Authenticator App Available for Android, iOS and Windows. Click on the below respective operating system to download the App.


    • Steps to Follow to Secret Key in Device:
      • In the Application, click on the top Right hand side
      • Click On Set Up Account
      • Click A Enter provided key
      • You will need to enter the following information for Manual account entry
      • Enter account name : Enter your account name here. Please note that this is an optional field. It is not a must/mandatory.
      • Enter your key : You need to enter the key here that is generated after you click on Update.
      • Time based : If you choose time based token, then the number will change on its own after every few seconds. You will need to enter the token before the timer ends.
      • Counter based : If you choose counter based token, there is no restriction on the time on when to enter the code. You can refresh a button to change the code.

    • Enter The Code Generated Here  : You need to enter the code that is generated after fulfilling above steps here.

    • Click on Update

    • Next time, when you log in to your Admin Panel after entering the admin area details, you will need to enter the Authenticator Code as below

    • Note : If you want to use Google 2-Step Verification for Member's Area, then set as displayed in the below image.
    • Enable Google 2-Step Verification:Yes

      •
    • Click on Update
  • Password Protected Directory (app/webroot/adminpanel) – You can make your admin area password protected from cPanel. Kindly follow these steps for the same:

    • Open cPanel
    • Click on Password Protect Directories

    • Click the folder icon to select directory path admindirectory
      Click on adminpanel directory name
      Path: public_html/app/webroot/adminpanel

    • Next Create User

    • Next check on checkbox next to “Password protect this directory” and enter "adminpanel" in the field “Enter a name for the protected directory”. Then click on Save button.

    • You will see next page with"Permissions Updated"

Retrieved from "http://proxscripts.com/docs/index.php?title=Security_Steps&oldid=887"