PHP download

Download the PHP package jvmtech/neos-hardening without Composer

On this page you can find all versions of the php package jvmtech/neos-hardening. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.

Table of contents
Download jvmtech/neos-hardening
More information about jvmtech/neos-hardening
Files in jvmtech/neos-hardening

Vendor jvmtech
Package neos-hardening
Short Description Harden request headers, login interface and passwords to increase backend security.
License MIT

FAQ

After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.

Example:

If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.

In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.

Some PHP packages are not free to download and because of that hosted in private repositories. In this case some credentials are needed to access such packages. Please use the auth.json textarea to insert credentials, if a package is coming from a private repository. You can look here for more information.

Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
To use Composer is sometimes complicated. Especially for beginners.
Composer needs much resources. Sometimes they are not available on a simple webspace.
If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.

Please rate this library. Is it a good library?

Informations about the package neos-hardening

JvMTECH.NeosHardening Package for Neos CMS

Harden request headers, login interface and passwords to increase backend security.

Installation

Active by default

Remove Neos version info from request headers *
Set min password strength requirements

Optional features

Change the default login url "/neos" to something like "/neos-random-suffix" *:
Replace the dynamic login url check with a custom RegEx (not needed if you just replace loginUri):
Limit login interface access to specified ip addresses:
Define password strength requirements, defaults:
An example for secure passwords (should be your standard because you use a password manager, right? 😉):
Disable user on too many failed login attempts:
Prevent reuse of old passwords:

*) Why hiding stuff?

Hiding the Neos version in the request headers and moving the login to an new url is nothing else than "security by obsurity".

Yes. But it's another layer to make it a little bit harder to get into your system. Therefore, it's a low-hanging fruit we should take.

by jvmtech.ch

All versions of neos-hardening with dependencies

PHP Build Version

Package Version

Version 1.0.4 Release 15. Aug 2023
create-project require 0 people choosed require and
0 people choosed create-project.

Download

Download latest version of neos-hardening from vendor jvmtech

Requires neos/neos Version >=7.2 <9.0 || dev-master

Composer command for our command line client (download client) This client runs in each environment. You don't need a specific PHP version etc. The first 20 API calls are free. Standard composer command

The package jvmtech/neos-hardening contains the following files

Loading the files please wait ....

Download the PHP package jvmtech/neos-hardening without Composer

FAQ

How can I use the PHP package after the download?

Do I need to create a project on this site?

When is it necessary to insert some auth.json content?

What is the advantage to use this site for my Composer projects?