This project is read-only.

Go live

Topics: Developer Forum, Project Management Forum
Jan 15, 2009 at 1:26 PM
What needs to be done before go live? I.e. in terms of security and locking down n2cms.

I.e. Delete the Install folder?
Change/Delete the admin login in the web.config, sort out membership provider.

Anything else need doing, like to do with tiny_mce and security for upload folder?
Jan 15, 2009 at 11:33 PM
I don't see much risk in leaving tiny_mce open. If you want to be sure (and have IIS7) you can change the web.config to disallow the anonymous user. It could possibly be used to find out the version of N2.

I'd probably remove execution permissions from /upload so you can't get malicious code in that way.