I’m working on a website which contains some confidential data only to be viewed by twenty shareholders. The homepage would contain a user name and password box which if any of these shareholders user names or passwords where entered into, would make all pages and links on the site viewable. Does a Freeway action exist for creating the user and password boxes?
Would anyone have any suggestions as to where to start with something like this. The secure pages must not come up via a search engine either. Would setting the text on these pages as graphic text with vague image names help?
Are security issues something that the hosting company can set up on the server or does it need to be primarily on the site design itself.
The simplest way to approach this would be to create a new folder in
Freeway’s Site pane and move all of the sensitive files into it.
Create an index page in that folder, and include links to all of the
sensitive files on that index page (but not anywhere on the rest of
your public site). Upload to your server, then on your hosting
provider’s control panel, set a username and password for that
folder. (You can set more than one if you don’t want to have your
users sharing the same credentials.)
Now simply provide a link to the index page of that secure folder,
and anyone who follows it will be prompted for a login and password.
Search engines can’t go there, so they won’t. You don’t need to
resort to GIF text or anything else.
Walter
On Mar 13, 2008, at 9:33 AM, matt covarr wrote:
I’m working on a website which contains some confidential data only
to be viewed by twenty shareholders. The homepage would contain a
user name and password box which if any of these shareholders user
names or passwords where entered into, would make all pages and
links on the site viewable. Does a Freeway action exist for
creating the user and password boxes?
Would anyone have any suggestions as to where to start with
something like this. The secure pages must not come up via a search
engine either. Would setting the text on these pages as graphic
text with vague image names help?
Are security issues something that the hosting company can set up
on the server or does it need to be primarily on the site design
itself.
I use http://authpro.com for a service like this. There’s an annual fee but it allows each user to register with their own username and password. I inserted their code into my secure freeway generated pages and it works great.
Bill McCarroll
On Thursday, March 13, 2008, at 06:33AM, “matt covarr” email@hidden wrote:
I’m working on a website which contains some confidential data only to be viewed by twenty shareholders. The homepage would contain a user name and password box which if any of these shareholders user names or passwords where entered into, would make all pages and links on the site viewable. Does a Freeway action exist for creating the user and password boxes?
Would anyone have any suggestions as to where to start with something like this. The secure pages must not come up via a search engine either. Would setting the text on these pages as graphic text with vague image names help?
Are security issues something that the hosting company can set up on the server or does it need to be primarily on the site design itself.
Thanks for the replies. I will take a look into both options. We want to be able to change the user names and passwords ourselves every few months. The password on a folder option suggested by Walter may be the best bet here.
You can ask your host to set-up a password protected folder for you. Have your index page in the root directory and all your sensitive information in the protected directory. I do this all the time using the cPanel from my hosts.
I’m working on a website which contains some confidential data only to be viewed by twenty shareholders. The homepage would contain a user name and password box which if any of these shareholders user names or passwords where entered into, would make all pages and links on the site viewable. Does a Freeway action exist for creating the user and password boxes?
Would anyone have any suggestions as to where to start with something like this. The secure pages must not come up via a search engine either. Would setting the text on these pages as graphic text with vague image names help?
Are security issues something that the hosting company can set up on the server or does it need to be primarily on the site design itself.
Our hosting can be configured to password protect web folders
(directories). You can add as many users for that folders as your
need, with passwords for each user in the control panel.
We also have a script (to one click install), that manages the users
login details and allows the webmaster to email and manage users from
a simple web interface.
You can ask your host to set-up a password protected folder for
you. Have your index page in the root directory and all your
sensitive information in the protected directory. I do this all the
time using the cPanel from my hosts.