Quantcast
Channel: Joomla! Forum - community, help and support
Viewing all articles
Browse latest Browse all 1482

Administration Joomla! 5.x • Re: How to change the /administrator path to a custom one?

$
0
0
I don't think that's a feature of Akeeba Tools any longer. I can't find anything in their documentation about it. It was always stated as an unsupported feature (so no help from the developers if you broke your site using it). If you're looking for ways to secure your Joomla back-end, it is far better (IMHO) to use the following:

The technical reason you can't (or shouldn't) change that folder (as I understand it) is because some extensions (rightly or wrongly) may hard-code references to /administrator in their extensions (instead of using code/variables (or whatever). the point is if you change it, you could well break your site.
  • Secret URL parameter method, such as:

    Code:

     yoursite.com/administrator/index.php?abcXYZ983920
    This protection can be set up in Akeeba Admin Tools or a third-party extension such as https://extensions.joomla.org/extension/admin-exile/.
  • Folder protection using the server's functionality e.g. htaccess/htpasswd. This will depend on the web server you're running your site on).
  • Multi-factor authentication (like Google / Microsoft Authenticator) which generates a six-digit key delivered through various methods including phone app, SMS, email etc. There are others like Yuibkey.
  • Using any combination of the following should secure your site's administrator folder:
    • secret URL parameter,
    • htaccess/htpasword,
    • Joomla admin login,
    • MFA.
If that's not secure as you can make it then I don't know what else you could do apart from ensuring Joomla is always fully up to date, including all updates for extensions.

Statistics: Posted by AMurray — Mon Mar 25, 2024 10:09 pm



Viewing all articles
Browse latest Browse all 1482