Support

Admin Tools

#16329 Suggestion

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Monday, 10 June 2013 01:59 CDT

Sunday, 09 June 2013 21:17 CDT

lpks
Very happy with this software. Geoip banning is a big help on our public intranet site to prevent anyone from any other country loggin in, for example. Can I suggest a separate Geoip ban for admin access so we can prevent access to /administrator from countries our admins never go to?

Satisfied customer

Robert

Monday, 10 June 2013 01:59 CDT

nicholas
Hello Robert,

Thank you for the kind words!

GeoIP is not a very secure feature. It attempts to guess the country of the visitor based on their IP address. This has two important shortcomings:

1. The IP to country database is only 95% accurate. This sounds like a lot, but it's not. One out of 20 visitors is reported as coming from the wrong country.

2. A hacker can very easily work around this restriction by using a free proxy server in your country. If this sounds far fetched you've probably not seen a list of proxy servers which comes complete with step-by-step instructions for dummies at the bottom of the page. Skill level required to circumvent GeoIP? Minimal.

So while this feature is good for keeping the bulk of non-techie visitors out, it's no match for a hacker or even the most moderately technical visitor.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!