Just enter the username and password you just configured and you are good to go. When you access your phpMyAdmin web address again, you will be prompted with a authentication login. Once done and you want to create another user you can do so without using a -c flag like below: sudo htpasswd /etc/phpMyAdmin/.htpasswd another_user You will be asked to create a password for the particular user you have created. htpasswd in that particular directory as well as adding a user by following the below command: sudo htpasswd -c /etc/phpMyAdmin/.htpasswd username sudo apt-get install apache2-utilsĪfter installation, let us now create our. htdigest authentication in apache as well as other useful tools for securing an apache server. Let us as apache2-utils from our default repository.Īpache2-utils enables an. But we will need an additional package to be able to complete the security procedure. htpasswd file through our use of the AuthUserFile directive. In the guide above we have determined the location of our. htpasswd file for security authentication Require valid-user - Specifies that only authenticated user should be able to given access to the webpage.Īfter finishing, please save and close the file. htpasswd file that contains the authorized username and password. Let us open the file and enter the necessary code to secure our phpMyAdmin: AuthType BasicĪuthType Basic - means we will use a username password combination for this security.ĪuthName - This sets a message in the login dialog box with a message "Secure Server".ĪuthUserFile - the location of the. htaccess file within the application directory of phpMyAdmin by typing: sudo nano /usr/share/phpMyAdmin/.htaccess htaccess override in apache we will now need to create one to implement some security measures. Īfter adding the line, please save and close the file. Next, we will need to add an AllowOverride All directive to the file within the phpMyAdmin directory section. Let us edit the file nf by following the command below: sudo nano /etc/apache2/conf-available/nf htaccess file overrides by reconfiguring apache. To secure phpMyAdmin first we need to allow. To secure phpMyAdmin we will have to devise some security measures to decrease the probability of attacks. Since phpMyAdmin is an internet facing web interface, it has become one of the most attacked application ever owing to the fact that it is fairly easy to identify a phpMyAdmin server. Installing and running phpMyAdmin on Ubuntu server is fairly easy, we are able to finish installation in no time but we are not finished until we have secured phpMyAdmin from potential attackers. ![]() Upon logging-in, you will see the web interface of phpMyAdmin that will look like below: You can now access the phpMyAdmin web interface on the following web address: You can now login to the web interface using your root username and the password you configured earlier. Next, we will need to restart apache for the server to recognize the changes. Next, we will enable PHP mcrypt and mbstring extensions with the following commands: sudo phpenmod mcrypt Confirm your administrator password on the succeeding step and confirm a password for *phpMyAdmin* application itself. Enter your own database administrators password on the next step.Ĥ. Select **yes** when asked whether to use *dbconfig-common*.ģ. For the server, please select **Apache 2**.Ģ. You will be asked a few questions to finalize your installation correctly. apt-get updateĪpt-get install phpmyadmin php-mbstring php-gettext We can do the following steps by updating our local packages first using apt and then installing phpMyAdmin afterwards. Let us start by installing phpMyAdmin from our default Ubuntu repo. If not, please follow the guide on installing LAMP server using Ubuntu.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |