<div dir="ltr"><div class="gmail_default" style="font-size:x-small">Thank you, Tony.<br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Oct 19, 2017 at 11:23 AM, Tony White via kictanet <span dir="ltr"><<a href="mailto:kictanet@lists.kictanet.or.ke" target="_blank">kictanet@lists.kictanet.or.ke</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">From apache documentation at:<br>
<a href="https://httpd.apache.org/docs/2.4/howto/access.html" rel="noreferrer" target="_blank">https://httpd.apache.org/docs/<wbr>2.4/howto/access.html</a><br>
<br>
" The Allow, Deny, and Order directives, provided by<br>
mod_access_compat, are deprecated and will go away in a future<br>
version. You should avoid using them, and avoid outdated tutorials<br>
recommending their use."<br>
<br>
So, a more future-proof answer would be:<br>
<br>
<RequireAll><br>
Require ip xx.xx.xx.xx yy.yy.yy.yy<br>
</RequireAll><br>
<br>
Cheers,<br>
Tony<br>
<br>
<br>
On 19/10/2017, Michael Pedersen via kictanet<br>
<span class=""><<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><wbr>> wrote:<br>
> For those who have asked here is the more technical details of how I set<br>
> this up (It's really just a quick hack).<br>
><br>
> 1. inside the wp-admin folder I have a .htaccess file which forbids<br>
> access from almost every IP - something similar to:<br>
><br>
> Order deny,allow<br>
> Deny from all<br>
> Allow from 41.212.36.170<br>
><br>
> 2. Within the main web-root I have a file (see attached php code) in<br>
> this example it's called "kictWP.php". When I need access to the admin I<br>
> then simply goto <a href="http://www.mydomain.com/kictWP.php" rel="noreferrer" target="_blank">http://www.mydomain.com/<wbr>kictWP.php</a> - enters my<br>
> "secret" password - this then updates the .htaccess file so wp-admin can<br>
> be accessed from my curent IP.<br>
><br>
> Thats it really..<br>
><br>
> Regards<br>
> Fundi-Mike<br>
><br>
><br>
> On 10/18/17 12:02 PM, anyega jefferson via kictanet wrote:<br>
>> thats a fascinating fix , Michael, please share a resource i can read<br>
>> on to learn how to do that,<br>
>><br>
>> Thank you.<br>
>><br>
>> On Wed, Oct 18, 2017 at 11:47 AM, Michael Pedersen via kictanet<br>
</span>>> <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>><br>
<div><div class="h5">>> wrote:<br>
>><br>
>> I agree with George's sentiment on wordpress security - I have had<br>
>> the (un)pleasant experience of helping/cleaning several wordpress<br>
>> setups which had been hacked.<br>
>><br>
>> That said I am sure the pro's and con's was considered when the<br>
>> choice of CMS was made.<br>
>><br>
>> In my experience many attacks on wordpress is targeted on the<br>
>> /wp-admin/ folder, and making that inaccessible to all but<br>
>> explicitly white-labeled IP's seems to remove a lot of grief.<br>
>><br>
>> I am personally running only one wordpress installation which has<br>
>> no (customer) critical data and hosted on a separate hosting<br>
>> setup. On that setup the admin can on be access from one specific<br>
>> IP - but you can access a custom (non wordpress based) system to<br>
>> change the current allowed IP to whichever IP you are currently on.<br>
>> It takes 30seconds extra to login/access the admin but in my<br>
>> opinion it reduces a lot of problems.<br>
>><br>
>> ..<br>
>> Mike<br>
>><br>
>><br>
>> On 10/15/2017 11:29 PM, george sidney ralak via kictanet wrote:<br>
>>> I like some of the responses to my questions. Still, I have to<br>
>>> wonder, was security even considered before going for WP, which<br>
>>> is one of the most targeted by hackers.<br>
>>><br>
>>> When considering time and cost, I might consider WP, but then, do<br>
>>> you consider extra plugins that you might have to purchase, how<br>
>>> about updating issues.<br>
>>><br>
>>> Also, I believe the client has the right to be specific with what<br>
>>> they want. I just found it ironic that KICTANet, the platform<br>
>>> with people and institutions in Technology in the country uses<br>
>>> wordPress.<br>
>>><br>
>>> As to the websites that use Wordpress, not one of these sites<br>
>>> uses WP out of the box – there is considerable custom development<br>
>>> to make these sites work the way they do, development costing a<br>
>>> lot of money. Those sites are not ‘wordpressbeginner’ grade.<br>
>>><br>
>>><br>
>>> On Sun, Oct 15, 2017 at 9:19 PM, Odhiambo Washington via kictanet<br>
>>> <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</div></div><span class="">>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>><br>
>>> +1<br>
>>><br>
>>> The choice of a CMS or an OS, is purely personal to a<br>
>>> developer or a SysAdmin. From where I sit, it's not<br>
>>> questionable unless STRICTLY specified by a client.<br>
>>><br>
>>> On 15 October 2017 at 09:05, Ali Hussein via kictanet<br>
>>> <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</span><span class="">>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>><br>
>>> George<br>
>>><br>
>>> On the question of why Wordpress?<br>
>>><br>
>>> First it’s an open source Content Management System<br>
>>> (CMS), its free to install, deploy, and upgrade. Then it<br>
>>> has thousands of plugins and templates that power a<br>
>>> flexible and simple interface, which reduces development<br>
>>> costs and deployment time. The dev team was also informed<br>
>>> by the fact that millions of websites use Wordpress. Some<br>
>>> of he most notable brands that use Wordpress include<br>
>>> Microsoft and Bloomberg. See link below:-<br>
>>><br>
>>><br>
>>> <a href="http://www.wpbeginner.com/showcase/40-most-notable-big-name-brands-that-are-using-wordpress/" rel="noreferrer" target="_blank">http://www.wpbeginner.com/<wbr>showcase/40-most-notable-big-<wbr>name-brands-that-are-using-<wbr>wordpress/</a><br>
>>><br>
>>> <<a href="http://www.wpbeginner.com/showcase/40-most-notable-big-name-brands-that-are-using-wordpress/" rel="noreferrer" target="_blank">http://www.wpbeginner.com/<wbr>showcase/40-most-notable-big-<wbr>name-brands-that-are-using-<wbr>wordpress/</a>><br>
>>><br>
>>> Hope this answers your question or concerns?<br>
>>><br>
</span>>>> *Ali Hussein*<br>
>>> *Principal*<br>
>>> *Hussein & Associates*<br>
<span class="">>>> +254 0713 601113<br>
>>><br>
>>> Twitter: @AliHKassim<br>
>>><br>
>>> Skype: abu-jomo<br>
>>><br>
>>> LinkedIn: <a href="http://ke.linkedin.com/in/alihkassim" rel="noreferrer" target="_blank">http://ke.linkedin.com/in/<wbr>alihkassim</a><br>
>>> <<a href="http://ke.linkedin.com/in/alihkassim" rel="noreferrer" target="_blank">http://ke.linkedin.com/in/<wbr>alihkassim</a>><br>
>>><br>
>>><br>
>>> "We are what we repeatedly do. Excellence, therefore, is<br>
>>> not an act but a habit." ~ Aristotle<br>
>>><br>
>>><br>
>>> Sent from my iPad<br>
>>><br>
>>> On 14 Oct 2017, at 1:23 PM, george sidney ralak via<br>
>>> kictanet <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</span><span class="">>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>><br>
>>>> Looks great.<br>
>>>><br>
>>>> A few issues though. Quick links on the footer are not<br>
>>>> really leading someone anywhere.<br>
>>>><br>
>>>> And a question: Why Wordpress?<br>
>>>><br>
>>>> On Fri, Oct 13, 2017 at 6:11 PM, Francis Monyango via<br>
>>>> kictanet <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</span><span class="">>>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>>><br>
>>>> I love it. Looks really good.<br>
>>>><br>
>>>> On 13 October 2017 at 16:55, Keith Andere via<br>
>>>> kictanet <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</span><span class="">>>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>>><br>
>>>> Liz,<br>
>>>><br>
>>>> Mobile optimization is fantastic. Looks fresh<br>
>>>> and easy to navigate.<br>
>>>><br>
>>>> Barrack and team, cheers!<br>
>>>><br>
>>>> Regards,<br>
>>>><br>
>>>> Keith<br>
>>>><br>
>>>><br>
>>>> Please consider the environment before printing<br>
>>>> this e-mail.<br>
>>>><br>
>>>> On 13 Oct 2017 01:03, "anyega jefferson via<br>
>>>> kictanet" <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</span><span class="">>>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>>><br>
>>>> Great job, looks good,<br>
>>>><br>
>>>> On Thu, Oct 12, 2017 at 11:55 PM, Liz Orembo<br>
>>>> via kictanet <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
</span><span class="">>>>> <mailto:<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.<wbr>kictanet.or.ke</a>>> wrote:<br>
>>>><br>
>>>><br>
>>>> Dear listers,<br>
>>>><br>
>>>> Greetings,<br>
>>>><br>
>>>> KICTANet has just finished working on<br>
>>>> the first phase of the new website and<br>
>>>> would now like to invite you to give<br>
>>>> comments/suggestions. Especially on how<br>
>>>> it can serve as an ICT policy engagement<br>
>>>> platform and as an Information resource<br>
>>>> for stakeholders.<br>
>>>><br>
>>>> Here's the link:<br>
>>>> <a href="https://www.kictanet.or.ke/" rel="noreferrer" target="_blank">https://www.kictanet.or.ke/</a>.<br>
</span>>>>> <<a href="https://www.kictanet.or.ke/" rel="noreferrer" target="_blank">https://www.kictanet.or.ke/</a>> You can<br>
<span class="">>>>> send your comments either on/offlist, or<br>
>>>> on the website itself.<br>
>>>><br>
>>>> KICTANet owes a lot to the brilliant<br>
>>>> team that worked on this website (Amos<br>
>>>> Ochieng from pixels Kenya, Barrack<br>
>>>> Otieno, Mike Musya and Washington<br>
>>>> Odhiambo) Special thanks to Washington<br>
>>>> who developed and maintained the old<br>
>>>> website from the early days of the network.<br>
>>>><br>
>>>> As always, we thank you for your<br>
>>>> continued feedback and we hope you will<br>
>>>> enjoy the new look and feel.<br>
>>>> --<br>
>>>><br>
>>>> Best regards.<br>
>>>> Liz.<br>
>>>><br>
>>>> PGP ID: 0x1F3488BF<br>
>>>><br>
>>>><br>
>>>><br>
>>>><br>
>>>> --<br>
>>>> Anyega M Jefferson<br>
>>>><br>
>>>> <a href="mailto:jeffersonanyega@gmail.com">jeffersonanyega@gmail.com</a><br>
</span>>>>> <mailto:<a href="mailto:jeffersonanyega@gmail.com">jeffersonanyega@gmail.<wbr>com</a>><br>
<span class="">>>>><br>
>>>> 0703824326<br>
>>>><br>
>>>> Start where you are,use what you have and do<br>
>>>> what you can.<br>
>>>><br>
>>>><br>
>>>><br>
>>>> _<br>
>>>><br>
>>>><br>
>>>> --<br>
>>>> Francis Monyango<br>
>>>><br>
>>>> Lawyer | ICT Policy and Legal Consultant<br>
</span>>>>> <a href="http://www.monyango.com" rel="noreferrer" target="_blank">www.monyango.com</a> <<a href="http://www.monyango.com" rel="noreferrer" target="_blank">http://www.monyango.com</a>><br>
<span class="">>>>><br>
>>>><br>
>>>><br>
>>>><br>
>>>><br>
>>>><br>
>>>> --<br>
>>>> George Sidney Ralak<br>
>>>> UI/UX Designer<br>
>>>> Tell: +254716909815<br>
>>>> Skype: Sidralak<br>
>>>><br>
>>>><br>
>>><br>
>>><br>
>>><br>
>>> --<br>
>>> Best regards,<br>
>>> Odhiambo WASHINGTON,<br>
>>> Nairobi,KE<br>
>>> +254 7 3200 0004/+254 7 2274 3223<br>
>>> "Oh, the cruft."<br>
>>><br>
>>> _<br>
>>><br>
>>><br>
>>><br>
>>> --<br>
>>> George Sidney Ralak<br>
>>> UI/UX Designer<br>
>>> Tell: +254716909815<br>
>>> Skype: Sidralak<br>
>>><br>
>>><br>
>><br>
>><br>
>> --<br>
>> Anyega M Jefferson<br>
>><br>
</span>>> <a href="mailto:jeffersonanyega@gmail.com">jeffersonanyega@gmail.com</a> <mailto:<a href="mailto:jeffersonanyega@gmail.com">jeffersonanyega@gmail.<wbr>com</a>><br>
<span class="im HOEnZb">>><br>
>> 0703824326<br>
>><br>
>> Start where you are,use what you have and do what you can.<br>
>><br>
>><br>
><br>
><br>
<br>
<br>
</span><span class="HOEnZb"><font color="#888888">--<br>
Tony White<br>
</font></span><div class="HOEnZb"><div class="h5"><br>
______________________________<wbr>_________________<br>
kictanet mailing list<br>
<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a><br>
<a href="https://lists.kictanet.or.ke/mailman/listinfo/kictanet" rel="noreferrer" target="_blank">https://lists.kictanet.or.ke/<wbr>mailman/listinfo/kictanet</a><br>
Twitter: <a href="http://twitter.com/kictanet" rel="noreferrer" target="_blank">http://twitter.com/kictanet</a><br>
Facebook: <a href="https://www.facebook.com/KICTANet/" rel="noreferrer" target="_blank">https://www.facebook.com/<wbr>KICTANet/</a><br>
<br>
Unsubscribe or change your options at <a href="https://lists.kictanet.or.ke/mailman/options/kictanet/jeffersonanyega%40gmail.com" rel="noreferrer" target="_blank">https://lists.kictanet.or.ke/<wbr>mailman/options/kictanet/<wbr>jeffersonanyega%40gmail.com</a><br>
<br>
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.<br>
<br>
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.<br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><div dir="ltr">Anyega M Jefferson<br><br></div><div><a href="mailto:jeffersonanyega@gmail.com" target="_blank">jeffersonanyega@gmail.com</a><br><br>0703824326<br></div><div dir="ltr"><br>Start where you are,use what you have and do what you can.<br><br></div></div></div></div>
</div>