IP-Based admin access

Alex4108 · lokakuu 13, 2013, 12:00:12 IP

Good morning SMF!

I haven't been on these forums for a while, but alas, it's time to set up another SMF forum, and this time, security is essential. We have a server ready to go, with everything we need. Web server, database, ftp, php, and a VPN!

This is where I wanted to ask my question. When a user dials in to the VPN, all traffic is routed through the VPN (like a proxy!). The user then gets an IP address from the VPN server (10.100.2.x) or (10.100.1.x), depending on their account's configuration. I wanted to know, if there's a way we can restrict administrators from opening the admin panel, unless they have a specific IP range.

Thanks for your help guys!
Alex

Arantor · lokakuu 13, 2013, 12:25:03 IP

Well, I'd say the quickest way to restrict people from opening the admin panel is simply not to give them administrator powers in the first place.

There are certain things that can be done in the admin panel that are not 'admin' powers per se, such as news, group management, member management, which all have separate permissions. If you don't want people to have these powers, don't give it to their account.

Not sure why you need to involve the VPN in this, personally.

Simple Machines Community Forum

Uutiset:

IP-Based admin access

Alex4108

Arantor