Is it possible to have admin running on a distinct server (or virtual), for security reasons?
I managed to set up a new admin path in local.xml and a new admin domain in magento settings but I can still access admin on the old domain. Example:
Frontend server: example.com
Admin server: admin.example.com
Admin path: /newadmin/
Each time I access example.com/newadmin/ I am redirected to admin.example.com (that is good for usability but not good for security)
Is it possible to remove admin section from from magento controller and use it only on a secondary server? They will share the same database. Content (product images) can be rsync or shared. Do you think this will be good for security?