Your /administrator area is vulnerable – secure it with AdminExile. Multiple access keys, IPv4/IPv6 White and Black Lists (IP and CIDR netmasks supported), Brute Force detection. AdminExile has you covered.
The AdminExile Plugin has long been a favored and highly rated extension in the JED. Read the reviews, check out the 9 pages of documentation, and then try it yourself.
* Access key(s) – key only, or key + key value. Others provide one or the other. AdminExile provides BOTH.
* Front-end Restriction – Restrict certain accounts from logging into the front-end with accounts intended only for back-end use.
* Lost Key Recovery – Useful for individuals using extremely difficult keys, or teams who change the keys frequently.
* IP White and Black Lists – Use individual addresses, or CIDR netmasks to define your lists.
* Brute Force Protection – Penalize users who abuse your system.
* Management of blocked addresses – See a list of blacklist attempts and bruteforce attempts, as well as the ability to reset those IP addresses.
* Admin Notification – When abuse comes from a blacklisted address or brute force is detected, an administrator can be sent a notification.
* Stealth Mode – Prevents tell-tale signs that something exists at /administrator, like the session cookie!
There are far too many features to describe in this page. Visit the documentation link to get the bigger picture.
Version 2.0.0 – Massive rewrite, more features, now featuring kitten whispers – recommended upgrade!
Version 2.0.1 – resolves an issue on systems that do NOT have the GMP library (because I thought everyone had it!)
Version 2.0.2 – file missing from previous version
Version 2.0.3 – resolved issue with valueless key
Version 2.0.4 – JRequest was so much better than JInput. RIP JRequest!
Version 2.0.5 – fixed whitelist logout issue
Version 2.1.0 – removed upgrade capacity from 1.x versions. It’s just unreliable – if upgrading from 1.x – uninstall first. Refactored plugin for greater efficiency and to resolve a couple of whitelist issues.
Version 2.1.1 – Oops – PHP 5.2 doesn’t support anonymous functions (closures)
Version 2.1.2 – resolved issue where invalid J! authentication did not trigger brute force penalty after correct key entry
Version 2.1.3 – resolved database timing issue related to session variables – Thanks for your help Henrik!
All of my extensions are free and none of my extensions display advertisements or links to my sites or services. If you feel that I have blessed you, then you can bless me by making a contribution to fund future development. Visit the “Website” link to make a contribution.