Support

Admin Tools

#10092 Secret word not working in 2.1.11

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Thursday, 10 November 2011 01:39 CST

davesage
Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? Yes
Have I searched the forum before posting? Yes
Have I read the documentation before posting (which pages?)? Yes
Joomla! version: 1.5.24 & 1.7.2
PHP version: 5.3.
MySQL version: 5.1.
Host: (optional, but it helps us help you)
Admin Tools version: 2.1.11


Description of my issue:

Seems as though the secret word check is no longer being checked in 2.1.11 - I have checked one of my sites on 2.1.10 and it indeed sends you back to the homepage if you don't add the secret word or put in the wrong one but with 2.1.11 I can get to the administrator page with no or any secret word?

I have checked the secret word is still in the config of the WAF but it seems not to make any difference?

Cheers,

Dave

nicholas
Akeeba Staff
Manager
Hi Dave,

Have you by any chance added your own IP to any whitelist (like the Administrator IP Whitelist or the "Never block these IPs" list)? If yes, please note that your IP is white-listed which means that no protection is applied against you; you have assigned yourself as a "known good" IP. If you try accessing your site from a different IP, e.g. using your mobile browser on your cellphone over a 3G connection, you will see that the protection works.

If you still don't believe me, try accessing https://www.AkeebaBackup.com/administrator (we are, of course, running AT Pro 2.1.11 on our own site). Just don't visit this URL more than twice, or you'll be auto-blocked from accessing this site for quite a while :)

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

davesage
Ah - ok this sounds fine, has this behaviour changed since 2.1.10 as my IP was always in the whitelists and when I tested it on 2.1.10 last night it kicked me to the homepage, so I jsut thought it might not be working. Anyway, this all sounds great.

This also helps me because for my client admins who are whitelisted I don;t need to get them to use the secret word - fab.

Thanks for the speedy response.

Cheers,

Dave

nicholas
Akeeba Staff
Manager
Hi Dave,

Yes, that was changed just after 2.1.10, on popular request :)

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

davesage
Great thanks for the update, keep up the great work!

nicholas
Akeeba Staff
Manager
You're welcome!

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!