Admin Tools

#24250 Amazon Technologies

Posted in ‘Admin Tools for Joomla! 4 & 5’

This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version

n/a

PHP version

n/a

Admin Tools version

n/a

Latest post by on Saturday, 20 February 2016 17:20 CST

Thursday, 21 January 2016 15:45 CST

wombler

I just need confirmation please ...

For the past week, my site is being constantly attacked by various Amazon Technologies across the world.

I have configured WAF to only allow access to IP's in the whitelist - and mine is the only one there.
For added security, have also added a Administrator Secret URL parameter.

So, if I am correct, I do not have to add the IP's of Amazon Technologies to my blacklist because they will not be able to access my back end because their IP's are not in my whitelist.

Can someone please confirm ? I'd rather not site and ban hundreds of IP's if I dont need to !

Thursday, 21 January 2016 16:12 CST

dlb

You are correct. They won't be able to find your back end login screen. Even if they find it, they have to guess the user ID and password. Even if they get the right password, Admin Tools will keep them out based on the IP address not in the whitelist. Actually, I don't know what order the whitelist block comes in, but you have made it very difficult for anyone to log into the back end of your site.

Dale L. Brackin
Support Specialist

English: native

Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

????
My time zone is EST (UTC -5) (click here to see my current time in Philadelphia, PA)

Saturday, 20 February 2016 17:20 CST

System Task

system

This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.

Edited by on 2016-02-20 17:20 CST

Support