Main Area and Open Discussion > Living Room
two-factor entrance authentication
Steven Avery:
The main application under consideration is currently an ecommerce application, that runs under Wordpress.
Shortly, that will be replaced by a dedicated ecommerce platform that is hosted on the server, without the Wordpress middle layer, written largely in PHP/Zend. A more robust ecommerce implementation (something that the Wordpress program, WooCommerce, tries to get around with a gazillion addons.) Magento is the more robust one and the techie programmer support is stronger.
Both have 1000s of installations.
===========
Thanks for the cpanel and related information. I will be looking it over.
"We really need two-factor authentication ... will even make password theft useless. If this is too much, then the absolute easiest way to this is to require email verification ...."
Basically, I was simply seeing the problem and offering an unusual alternate implementation. I have notified our website developers that we would like there to be some sort of special admin security.
===========
"the fact that your server is not hardened against such attempts."
We recently switched to Nexcess as a host largely because they seem to be very attuned to techie stuff, quickly.
This has worked out very well.
===========
Steven
wraith808:
The main application under consideration is currently an ecommerce application, that runs under Wordpress.
Shortly, that will be replaced by a dedicated ecommerce platform that is hosted on the server, without the Wordpress middle layer, written largely in PHP/Zend. A more robust ecommerce implementation (something that the Wordpress program, WooCommerce, tries to get around with a gazillion addons.) Magento is the more robust one and the techie programmer support is stronger.
Both have 1000s of installations.
-Steven Avery (February 17, 2015, 09:16 AM)
--- End quote ---
I would caution against the idea that just because something has 1000s of installations that it is secure. If you are really concerned about such, it needs to be a continual consideration.
"the fact that your server is not hardened against such attempts."
We recently switched to Nexcess as a host largely because they seem to be very attuned to techie stuff, quickly.
This has worked out very well.
-Steven Avery (February 17, 2015, 09:16 AM)
--- End quote ---
If you have confidence in your host as far as that aspect, it's one of the best lines of defense.
Navigation
[0] Message Index
[*] Previous page
Go to full version