Skip to main content

Secure your Alive Dashboard

-What kind of security is implemented in Alive?
-None

But it is essential that you don't expose Alive publicly. There are no guarantees that a hacker won't use Alive against you. So, how do you go ahead securing Alive? Easiest is to use the security model in asp.net and add the following to your web.config.

<location path="Alive.axd">
 <system.web>
  <authorization>
   <allow users="?"/>
   <deny users="*"/>
  </authorization>
 </system.web>
</location>

This will allow only authenticated users, and deny anonymous. How to turn that "Access Denied" into a proper authentication can be read on MSDN.

comments powered by Disqus