The ibay public / private access with password options will secure for a single username / password combination only, and this is related to opening the ibay or website itself.
In addition the use of
.htaccess may be what you are wanting to search for - this offers finer control of the username and password options into the website.
Dependant on the content of the ibay there may then be different username and password combinations available - these will be managed by the software itself.
Generally I have found if the ibay is to hold a premade website which has builtin mysql based security then the ibay username and password can be problematic - ie you may get asked for it for different pages again. In these cases I have found relying on the security in built in the software beneficial. In these cases I have also used an excellent tip provided for
redirection to https only.
Alternatively sitemaker will create website structures and access rights into the
/opt directory as opposed to the ibay structure, so will use the security of the structure you give the opt directory and individual subdirectories themselves - ie folder ownership and modes... Key here is to avoid advise that suggests a
777 mode - this is inherently insecure.
Another facet that may play a part is the access to the
mysql permissions for the database for which the website is a front end.
All of these customisation are available and can be made to fine tune the security of your web content. It can be very simple ranging to much finer control... start by following the excellent advice from Ray - read
http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter14Then identify what you are trying to achieve (you could fire more detailed questions back into this thread and you will probably get more specific responses) and search on that aspect of security - such as the phrases in bold above.
Good luck. Cheers, shell
5 Replies
1998 Views