Prevent admin login from everywhere

More
3 years 3 weeks ago #114871 by htwsaar
htwsaar created the topic: Prevent admin login from everywhere
I try to secure the actual limesurvey installation.

Our German office for data security wants us to prevent administrative logins from the outside.

.htaccess is not helpful because it just blocks mydomain.tld/admin and not the actual and well known link for login in the role of admin.

Can someone help if there is an easy way by edition the index.php in the main folder, for example?
I would do that chance after every future update.

Someone else had the same problem / idea?

Thank you

Please Log in to join the conversation.

More
3 years 1 week ago #115173 by htwsaar
htwsaar replied the topic: Prevent admin login from everywhere
I found a way that fits my requirements.

My solution is made with php. I just need to check the changes after every update.

Please Log in to join the conversation.

More
3 years 1 week ago #115179 by holch
holch replied the topic: Prevent admin login from everywhere
Isn't it possible to block the "well known" URL via .htaccess as well?

I'm not a LimeSurvey GmbH member. I answer at the LimeSurvey forum in my spare time. No support via private message.
Some helpful links: Manual (EN) | Question Types | Workarounds

Please Log in to join the conversation.

More
3 years 1 week ago #115182 by htwsaar
htwsaar replied the topic: Prevent admin login from everywhere
While we are just allowed to use a few .htaccess directives this would not be a solution for us.

Please Log in to join the conversation.

Start now!

Just create your account and start using Limesurvey today.

Register now
Join our Newsletter!