Changes

Jump to navigation Jump to search
1,060 bytes added ,  22:54, 10 October 2014
Add PHP requirements for two-factor authentication
Line 14: Line 14:  
Create an ibay for Joomla! to live in.  You can call it anything you want, but I'll use joomla for this example.  I used the following settings:
 
Create an ibay for Joomla! to live in.  You can call it anything you want, but I'll use joomla for this example.  I used the following settings:
 
[[File:joomla_ibay.png]]
 
[[File:joomla_ibay.png]]
 +
 
If you expect to give remote users the ability to log in, you should probably set "Force secure connections" to "Enabled".
 
If you expect to give remote users the ability to log in, you should probably set "Force secure connections" to "Enabled".
   Line 72: Line 73:     
===Security===
 
===Security===
 +
Two possible security measures are to restrict access to the administration backend to users on your LAN, and to enable two-factor authentication.
 +
 +
====Restrict access to backend====
 
I wanted to restrict access to the administration backend to my LAN, so an outside user couldn't even get to the login page.  To do this, I created an .htaccess file like this:
 
I wanted to restrict access to the administration backend to my LAN, so an outside user couldn't even get to the login page.  To do this, I created an .htaccess file like this:
   Line 82: Line 86:  
  Allow from 192.168.x.0/24
 
  Allow from 192.168.x.0/24
   −
--[[User:DanB35|DanB35]] ([[User talk:DanB35|talk]]) 20:01, 10 October 2014 (CEST)
+
====Enable two-factor authentication====
 +
Two-factor authentication allows you to use Google Authenticator, or any compatible app or device, to further secure your installation by requiring a six-digit PIN that changes every 30 seconds.  You can require this for all users, or specific users.  Enabling this is part of the Joomla! configuration, and is not discussed here.  However, it will require installation of a PHP extension.  First, you will need to add the [[Epel|EPEL repository]] to your installation.  Then, if you have upgraded PHP as discussed above, do
 +
[root@e-smith html]# '''yum --enablerepo=remi-php55,epel install php-mcrypt'''
 +
 
 +
If you have not upgraded PHP, and have installed Joomla! 3.2.7 instead, do
 +
[root@e-smith html]# '''yum --enablerepo=epel install php-mcrypt'''
 +
 
 +
Then you can enable two-factor authentication following the Joomla! documentation.
 +
 
 +
--[[User:DanB35|DanB35]] ([[User talk:DanB35|talk]]) 23:54, 10 October 2014 (CEST)
147

edits

Navigation menu