hi, can I make it so my admin script can ONLY be accessed from my ip?
and, would this make things any safer? (I think it would)
i wouldn't trust it as your only source of authentication.
on the admin script, check to see $REMOTE_ADDR matches your ip address
it wouldn't be my ONLY form of checking, there's a password too
