diff --git a/htdocs/application/config/stikked.php b/htdocs/application/config/stikked.php
index be3c0fc..ece4fb3 100755
--- a/htdocs/application/config/stikked.php
+++ b/htdocs/application/config/stikked.php
@@ -72,6 +72,8 @@ $config['per_page'] = 10;
 **/
 $config['private_only'] = false;
 $config['enable_captcha'] = false;
+$config['spamadmin_user'] = '';
+$config['spamadmin_pass'] = '';
 
 /**
  * Default language
diff --git a/htdocs/application/controllers/spamadmin.php b/htdocs/application/controllers/spamadmin.php
index 95ed986..560810e 100755
--- a/htdocs/application/controllers/spamadmin.php
+++ b/htdocs/application/controllers/spamadmin.php
@@ -15,6 +15,17 @@ class Spamadmin extends CI_Controller
 	function __construct() 
 	{
 		parent::__construct();
+
+		//protection
+		$user = $this->config->item('spamadmin_user');
+		$pass = $this->config->item('spamadmin_pass');
+		
+		if ($user == '' || $pass == '' || !isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != $user || $_SERVER['PHP_AUTH_PW'] != $pass) 
+		{
+			header('WWW-Authenticate: Basic realm="Backup"');
+			header('HTTP/1.0 401 Unauthorized');
+			exit;
+		}
 	}
 	
 	function index()