osCommerce News
Recent posts
post item
post image
Success Story: Enhancing Security for the Admin Directory in osCommerce v4
January 27, 2025
Success Story: Enhancing Security for the Admin Directory in osCommerce v4 ...
Read more
post item
post image
Success Story: Seamlessly Updating an osCommerce 2.3 Import
January 24, 2025
Success Story: Seamlessly Updating an osCommerce 2.3 Import ...
Read more
post item
post image
Success Story: Automating Retail Pricing Based on Supplier Costs
January 22, 2025
Success Story: Automating Retail Pricing Based on Supplier Costs ...
Read more
post item
post image
Success Story: Simplifying Product Exports Across Multiple Databases
January 20, 2025
Success Story: Simplifying Product Exports Across Multiple Databases ...
Read more
post item
post image
Success Story: Mastering the Extension Generator in osCommerce
January 17, 2025
Success Story: Mastering the Extension Generator in osCommerce ...
Read more
post item
post image
Success Story: Automating Product Imports with CSV and XML Feeds
January 15, 2025
Success Story: Automating Product Imports with CSV and XML Feeds ...
Read more
post item
post image
Success Story: Offering Free Shipping for Specific Customer Groups
January 13, 2025
Success Story: Offering Free Shipping for Specific Customer Groups ...
Read more
post item
post image
Success Story: Setting Up the Correct Shop Address for the Click & Collect Plugin
January 10, 2025
Success Story: Setting Up the Correct Shop Address for the Click & Collect Plugin ...
Read more
post item
post image
Success Story: Enhancing Payment Options in osCommerce 4.x
January 08, 2025
Success Story: Enhancing Payment Options in osCommerce 4.x ...
Read more
post item
post image
Success Case: Options to Customize Product Listings
January 06, 2025
Success Case: Options to Customize Product Listings ...
Read more
Products
Tags

Management

Ecommerce

Integrations

newsite

launch

grant

fund

replatforming

osCommerce 4.x

shopping cart

hosting

Installation

New PayPal Module (Latest API 2.0)

osCommerce 2.2

osCommerce 2.3

Shopping cart customizations

Manually

PayPal Express

APM (Alternative Payment Method)

Standard Variant

Advanced Variant

Configuration

Testing

Front End

Install osCommerce for Me

Let me install myself

Multiple sales channels

Single active sales channel

Installation on your own server

Connect

App Shop

Adding Free Module

Admin Area

Adding Paid Module

Installing Module

Opayo Pi Module

Development Mode

Email Verification Before Registration

Managing Languages

Managing phpMussel

Managing Orders

oscommerce.com account

Creating Manual Orders

Managing Customers

Managing Customer Groups

Managing Brands

Managing Categories

Managing Filters on Categories

Managing Products

Managing Stock

Assigning Products and Categories to Front Ends

Assigning and Moving Products to Categories

Managing Default Sort Order on Product Listing and Category

Managing Cross-Sell and UPSell

Managing Reviews

Managing Attributes

Managing Product Groups

Managing Properties

Managing Suppliers

Managing Warehouses

Managing Sales Statistics and Purchase Report

Managing Stocktaking Costs

Managing Deleted Orders

Managing Coupons

Managing Virtual Gift Cards

Managing Sales Price

Managing Giveaways

Managing Featured Products

Managing SEO

Managing Meta Tags

Managing XML Sitemap

Settings of E-commerce Tracking for Google Tag Manager

Setting up GA4

Managing Pages

Managing Menus

Assigning Theme to Sales Channels

Deleting Sales Channels

Managing Translations

Managing Email Templates

Managing Catalog Pages

Managing Shipping Modules

Managing Payment Modules

Managing Order Structure

Managing Socials

Managing Extensions

Managing Managers

Managing Access Levels

Managing Back End Menu

Managing Configuration

Mail Sending via SMTP

Setting up SMTP

Status Groups

Order Statuses

Comment Templates

Stock Indication

Notify Me when in Stock

Stock Delivery Terms

Cross Sell Type

Cache Control

Filters

Managing Countries

Managing Counties and States

Geo Zones

Managing Cities

city settings

Postal Codes

Managing Taxes

Managing Currencies

Backups

Viewing Who is Online

Managing IP Restriction

Error Log Viewer

Creating Installation

Address Formats

Sales Tags

Managing Front Ends

Managing App Shop

Going Live with osCommerce

Affiliate Module

Awin Module

B2B Module

Business To Business module

Bazaarvoice Module

Managing Blog

Collection Points

Managing Competitors

Customer Code Module

Customer Modules Module

Customer Multi Emails Module

Customer Products Module

Delayed Despatch Module

Delivery Options Module

Fraud Address Module

Frontend Session Module

Invoice Number Format Module

Maximum Order Quantity

Merge Customers Module

Merge Orders Module

Minimum Order Quantity

Neighbour Module

One Trust Module

Order Flags and Markers

Pack Units

Covered by Coupon Module

Klarna Module

LiqPay Module

Mollie Pay

Pay360 by Capita Module

pxPay Module

RBS WorldPay Module

Tyl by NatWest Module

Personal Catalog

Personal Discount Module

Product Bundles

Product Collections

Product Easy View

Product Global Sort

Product Ignored Payment Methods

Product Ignored Shipping Methods

Product Press Reviews

Product Relocation

Managing Refer Friend

Bookkeeping Detail Report

Changes History Report

Compare Report

Deficit Product Report

Emails History Report

Report by Email Module

Expected Products Report

Managing Freeze Stock

In Cart Stock Report

Low Stock Report

Manufacturer Sales Report

Ordered Products Report

Purchase Report

Stock by Manufacturer Report

Summary Report

Updating Opayo Pi Module

Updating Opayo Server Module

Temporary Stock Report

Universal Log Report

Managing Search Plus

Managing DHL Shipping

Managing FedEx Shipping

Managing German Post Shipping

Managing Google Zones Shipping

Managing Nova Poshta Shipping

Managing Personal Rate UPS Shipping

Managing TNT Express Shipping

Managing UPS Shipping

Managing United States Postal Service Shipping

Managing USPS Shipping

Opayo Server Module

Managing Support System

Managing Trustpilot Module

Managing VAT On Order

Zero Price Module

User Group Extra Discounts

Installing Opayo Server by Elavon for osCommerce 2.2 via Installer

Installing Opayo by Elavon for osCommerce 2.2 via Installer

Installing Opayo Server for osc2.2 via Zip File

Installing Opayo for osc2.2 via Zip File

Click & Collect Shipping

Configuring Opayo by Elavon Module for osc 2.2

Configuring Opayo Server for osc 2.2

Testing Opayo Module for osc 2.2 on Front End

Testing Opayo Server for osc 2.2 on Front End

Installing Opayo Server for osc 2.3 via Installer

Installing Opayo for osc 2.3 via Installer

Installing Opayo Server for osc 2.3 via Zip File

Installing Opayo for osc 2.3 via Zip File

Configuring Opayo for osс 2.3

Configuring Opayo Server for osc 2.3

Testing Opayo Module for osc 2.3 on Front End

Testing Opayo Server for osc 2.3 on Front End

Updating to the Newest osc v4 with AppShop

Store Locator Module

Order Additional Fields Module

Products Sort in Stock First

Brand Estimated Delivery

Platform Restrict Login

Plain Product Description

Cron Scheduler

Success Cases

osCommerce v4

Theme Customization

Product Customization

Text Fields

Customer Personalization

RemoveDemoProducts

DatabaseBackup

RefineSearch

ProductFilters

InternalOrdering

IntranetCustomization

CrossSell

UpSell

XAMPP

Windows Server

Linux Server

Apache

Error Message

PHP File Replacement

ProductsPropertiesFilter

App Update

PHP Compatibility

PHP Version

Software Update

Submenu Image

Header Customization

Menu Widget

Demo Website Limitations

AJAX Error

Error Logs

SQL Fix

Search Function Error

Debian Installation

MySQL Setup

PHP Extensions

Apache mod_rewrite

URL Redirects

404 Error

Custom Module

Module Installation

PHP Development

Back In-Stock Notification

Template Fix

HTTPS to HTTP

URL Configuration

Disabling HTTPS in OSC4 Install

Free Shipping

Category-Based Shipping

Contributions Category

Custom Shipping

Shipping Settings

Product Assignment

Customer Groups

Product Visibility

Attribute Values

Product Attributes

Option Names

Custom Extension

Custom Development

Backend Customization

Internal Product Name

Order Processing Screen

Product Details Display

Tawk.to

Live Chat

Widget Setup

Chat Integration

Move Test Shop to Root

Root Directory Setup

Test Shop

Who's Online Extension

Store Launch

Sales Channel Configuration

Widget Export

osCommerce Widgets

Theme Designer

Widget Management

Loyalty Points

Bonus Actions

Reward System

Ecommerce Loyalty Program

Extension Development

Widget Integration

My Account Page

URL Path Fix

Product Options

Customizable Products

Product Configurator

Stock Management

Inventory Control

Stock Visibility

Product Availability

High-Traffic Sites

Database Performance

Site Optimization

Shipping Solutions

Packaging Features

Ready to Ship

Ecommerce Logistics

Shipping Quotes

Shipping Optimization

Search Optimization

Slow Search Fix

Product Search

Pre-indexed Tables

Cron Jobs

Search Settings

Site Speed Improvement

QuickBooks Integration

DataLink Integrations

Accounting Software Integration

ERP Software Integration

eCommerce & Accounting Sync

Automated Data Synchronization

Admin Order Creation

Payment Processing

Update and Pay Module

Order Management

Add to Wishlist

Wishlist Integration

Wishlist Button Fix

Theme Editor

Design Troubleshooting

Subfolder Configuration

Theme Designer Fix

Data Protection

Runtime Logs

Password Security

Checkout Page

CSS Fix

Responsive Design

Product Images

Command Line Tools

Image Regeneration

Domain Transition

License Key Transfer

Reinstall Process

Access Control

Custom Pricing

Language Settings

Bilingual Support

Translation Management

Multilingual Store

Google Merchant Center

GTIN

Custom Products

Product Identifiers

MPN

Google Integration

Translation Module

German Language

Multilingual Support

PayPal Integration

Shopping Cart Display

Payment Module Configuration

SQL Commands

Customizing Buttons

Payment Options

German Translation

Frontend Localization

Enable Languages

System Translate Module

Shipping Configuration

Zone Table Rate Shipping

Weight and Price Restriction

Shipping Module Setup

Shipping Price Cutoff

Shipping Compensation Limits

Customer Details Validation

Custom Validation Rules

Mandatory Fields Setup

Address Validation

Minimum/Maximum Values Settings

Order Status Notifications

Email Templates Setup

Customer Communication

Automated Notifications

Product Listing

Image Display

UpSell Module

Widget Settings

Cash On Delivery

Prepayment

Payment Via Invoice

Click And Collect

Shop Local

Plugin Customization

Address Configuration

Promotions

Tailored Offers

Shipping Options

Custom Promotions

Automated Imports

CSV Import

XML Import

Extension Generator

Custom Extensions

Backend Controller

Development Tools

Product Export

Data Management

Database Export

Supplier Data

Custom Exports

Pricing Automation

Supplier Pricing

Retail Pricing

Inventory Management

Automated Workflows

Database Update

Customer Data

Data Migration

Ecommerce Security

Admin Directory

File Permissions

Database Migration

Secure Admin Access

Success Story: Enhancing Security for the Admin Directory in osCommerce v4

January 27, 2025

A customer migrating to osCommerce v4 wanted to ensure their new store setup was secure before proceeding further. Their main concerns included:

  • Renaming the admin directory for security purposes.
  • Configuring file permissions, specifically for configure.php.
  • Understanding which files and constants needed updates to reflect the renamed directory.

The osCommerce support team provided a detailed step-by-step guide to address each concern:

  1. Renaming the Admin Directory:
    • Rename the admin directory.
    • o Update the following constant in /admin/includes/local/configure.php: define('DIR_WS_ADMIN', '/admin/');
  2. File Permissions for configure.php:
    • Set the permissions of configure.php in the local subdirectory to 444 for security.
    • Note: The main includes/configure.php file should retain permissions that allow updates, as it may change during system updates.
  3. Updating Constants Across Files:
    • For admin/includes/configure.php, ensure the following constant is updated: defined('DIR_WS_HTTP_ADMIN_CATALOG') or define('DIR_WS_HTTP_ADMIN_CATALOG', ltrim(DIR_WS_ADMIN, '/'));
    • For includes/configure.php, modify the constant on line 240 to reflect the new directory name: define('DIR_WS_HTTP_ADMIN_CATALOG', 'your_new_admin_dir/');

These measures reduce the risk of unauthorized access while maintaining system functionality.

You can further discuss it on our Forum
osCommerce ltd. Company No. 13192610 Old Station House, Station Approach, Swindon, SN1 3DU, Wiltshire, United Kingdom
© 1999 - 2025 osCommerce ltd Legal Policies