change LMS and CMS django admin to subdomain
86 views
Skip to first unread message
Amir Tadrisi
Apr 30, 2016, 1:13:23 PM4/30/16
to General Open edX discussion
Hi all
i wanan know how can i change the django admin from /admin in lms and cms to a subdomain like admin.lms.com and admin.cms.com
Best regards
Clinton Blackburn
Apr 30, 2016, 6:35:19 PM4/30/16
to General Open edX discussion
I'm curious. Why do you want to do this?
Message has been deleted
Amir Tadrisi
Apr 30, 2016, 6:56:48 PM4/30/16
to General Open edX discussion
Just thinking for organizing the domains , actually for security reason as well , is it complected ?
best regards
Clinton Blackburn
Apr 30, 2016, 8:53:56 PM4/30/16
to General Open edX discussion
You essentially have to run a second server. What is the security reason? Keep in mind that security through obscurity doesn't work.
Clinton Blackburn
--
You received this message because you are subscribed to a topic in the Google Groups "General Open edX discussion" group.
To view this discussion on the web visit https://groups.google.com/d/msgid/edx-code/11652131-7259-4bd2-924e-f3469ad32847%40googlegroups.com.
Amir Tadrisi
May 1, 2016, 12:56:00 PM5/1/16
to General Open edX discussion
That was great point thanks , i have to change the /admin /xxxxx , i mean i dont want it be easy for others to find the admin console of the django
Clinton Blackburn
May 1, 2016, 1:17:52 PM5/1/16
to General Open edX discussion
Let's carry this to a logical conclusion. You change the location of your admin portal. Someone finds the new location. Now what?
Clinton Blackburn
To view this discussion on the web visit https://groups.google.com/d/msgid/edx-code/46ca7a2e-57cf-4652-b596-49f9b9627188%40googlegroups.com.
Amir Tadrisi
May 3, 2016, 12:01:29 AM5/3/16
to General Open edX discussion
Well i think is best practice in security to don't let unauthorized people find your admin panel , in this case its more effort for unauthorized people to get access and see the admin panel
Clinton Blackburn
May 3, 2016, 12:09:12 AM5/3/16
to edx-...@googlegroups.com
Security through obscurity is bad practice. Good practices include:
- Limit the number of users with staff/superuser access.
- Require high entropy passwords.
- Require regular password updates.
- Be aware of outstanding security fixes for Django and other libraries.
These practices will do far more to keep your site safe than changing the path/domain of the admin site.
Clinton Blackburn
To view this discussion on the web visit https://groups.google.com/d/msgid/edx-code/e1393443-023a-43bb-8009-93bb407e8467%40googlegroups.com.
Amir Tadrisi
May 3, 2016, 12:12:46 PM5/3/16
to General Open edX discussion
Thanks a lot Clinton
It was great information thanks a lot im going to follow your advice
Clinton Blackburn
May 3, 2016, 12:14:28 PM5/3/16
to edx-...@googlegroups.com
Happy to help.
Clinton Blackburn
To view this discussion on the web visit https://groups.google.com/d/msgid/edx-code/bd6c7096-1f63-4122-991f-516b3339aa01%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages