View Issue Details

IDProjectCategoryView StatusLast Update
0026345mantisbtsecuritypublic2019-11-24 06:05
Reportergcell Assigned Todregad  
PrioritynormalSeveritymajorReproducibilityalways
Status closedResolutionnot fixable 
Product Version2.14.0 
Summary0026345: Disable or restrict access to admin pages
Description

Our security dipartment contest us the reaching of the administrator mantis page (https://mantis.xxxxxxxxx.it/admin/install.php ). How it is poddible to disable it or let it reach only with authentication?
Thankyou
GM

TagsNo tags attached.

Activities

dregad

dregad

2019-11-11 06:07

developer   ~0063075

This is currently not possible from within mantisBT.

Since these scripts are generally only needed when upgrading or for some specific maintenance tasks, our recommandation as outlined in the documentation is to simply delete the admin directory. Alternatively, you may restrict access to it via web server configuration e.g. .htaccess or similar.

Issue History

Date Modified Username Field Change
2019-11-11 05:51 gcell New Issue
2019-11-11 06:07 dregad Assigned To => dregad
2019-11-11 06:07 dregad Status new => resolved
2019-11-11 06:07 dregad Resolution open => not fixable
2019-11-11 06:07 dregad Summary Blocca la raggiungibilitĂ  della pagina di amministrazione => Disable or restrict access to admin pages
2019-11-11 06:07 dregad Note Added: 0063075
2019-11-24 06:05 atrol Status resolved => closed