Hello,
The default Mautic dashboard logon URL is mautic.domain.com/s/login
Now every Mautic user knows this logon URL. Is there an easy way to change this dashboard default URL to a custom URL to make it difficult for the hackers to brute force the logon ?
Thanks.
Hi,
I think a better solution is adding a captcha and/or 2FA to the login form. Both solutions should become a default feature in Mautic in my opinion. Due to new regulations in the EU, this functionalities are required for a lot of companies.
Hello @richardnl,
Yes your solution of adding captcha and/or 2FA to the login form is certainly valid and will be the solution for many. I note the free plugin you mentioned in a recent post.
However hiding or redefining the dashboard logon page URL is a more secure option thus depriving the hackers of even attempt a logon. This technique has been possible in many CMS including Wordpress by simply installing a free plugin. I wish Mautic had a similar feature which makes a lot of sense these days. Then we could choose your solution or the hide solution which covers all bases.
I come from a cybersecurity background and we block everything and only allow through what is absolutely necessary or the hackers try and circumvent.
Thanks.
Hi
We use cloudflare zero trust on all admin areas. This allows much stronger authentication.
However, during updates we disable this, as it can cause issues.
Hope this helps
Matt