0321-2222869
Call Now
0341-2496955
0300-2418543

Security

How to restrict directory access by IP address?

In order to secure your admin area from hackers, we recommended you to allow access only from your selected IP to your admin directory. You just need to create an .htaccess file in the directory where you want to restrict access by IP Address.

For example, if you have a WordPress blog installed on your main directory like example.com/wp-admin, you should create an .htaccess file in /wp-admin/.htaccess and you should put this code in, and not forget to replace the allowed IP address with your IP address.

order deny,allow
deny from all
allow from YOUR-IP-ADDRESS-HERE

(Replace “Your-IP-Address-Here” text with your IP Address)

You can test this by accessing your /wp-admin IP address from another IP address which is not allowed by your .htaccess file.

 

How to protect your .htaccess file?

For security purpose we recommended you to prevent access to your .htaccess file from unauthorized access.

Add this code to your .htaccess file:

# .htaccess protection

order allow,deny
deny from all
satisfy all

How to disable directory browsing using .htaccess?

For security purposes, we recommend that you to disable directory browsing on your website so no one can see the files/folders of your website.
You can disable Directory Browsing by adding this line to your .htaccess file.

Options -Indexes

How to ban any IP Address via .htaccess?

If someone is trying to hack your website or you want to block their IP Address, you can add this line to your .htaccess file.

order allow,deny
deny from IP-ADDRESS
allow from all

Replace “IP-ADDRESS” with the IP Address you want to block.

.

How to protect your website’s images from an external website?

External Website can use < img /> tag to display an image from your site somewhere else on the internet and The end result of this is that the other website steals your bandwidth.

1. Log into your cPanel account.
2. In the “Security” section, click on “HotLink Protection” Icon.
3. If it displays “Hotlink protection is currently disabled“, click on the “Enable” button.

12

How to Configure Hotlink Protection?
Under “List the URLs to which you wish to allow access” you can allow an external website or your own website to have access. For example, if you have a subdomain like demo.example.com, you can add this website’s url to the list of allowed websites.

How to blacklist an IP Address to deny it access to your website?

You can lock directory with a password by using cPanel “Password Protected Directories” option.

1. Log into your cPanel account.
2. In the “Security” section, click on “IP Address Deny Manager” Icon.
3. Under “Add an IP address to deny” you should enter the IP Address you wish to block.
4. Click on the “Add” button

11

Here is Example:
Single IP Address: 192.168.0.1
Range: 192.168.0.1-192.168.0.40
Implied Range: 192.168.0.1-40
CIDR Format: 192.168.0.1/32
Implies 10.*.*.* — 192.

How to protect a folder with username and password in cPanel?

You can lock a directory with password by using the cPanel “Password Protected Directories” Option.

1. Log into your cPanel account.
2. In the “Security” section, click on “Password Protected Directories” Icon.
3. When a small window prompts you, chose “Document Root for” and then click on the “Go” button.

5

4. Click on the name of directory you want to protect by password.

6

5. Under “Security Settings“, check the box next to “Password protect this directory” and enter a name for the protected directory like “Password Protected Area“. Then click the “Save” button.

7

6. Now click on the “Go back” button.

8

7. Scroll down the page and under “Create User” fill in the username and password fields or use the Password Generator option to generate a new random password and copy the user/password to a notepad. You will need this when you want to open your password-protected directory and click on the “Add or Modify The Authorized User” button.

9

Now, should you try to open your password protected directory in your browser through the url www.example.com/myfolder, which is already password protected, your browser will prompt you to enter username and password.

10