Like all applications and software that are popular, they expose points to exploit. You can add a layer of security to your phpMyAdmin installation to prevent any unwanted guests.
Securing with Pop Up Login
Step 1: Edit Apache for .htaccess Overrides
vim /etc/apache2/conf-available/phpmyadmin.confInsert the code below into the file between the <Directory> </Directory> tags. , afterward save and exit by typing :wq hitting Enter
<Directory /usr/share/phpmyadmin>
Options FollowSymLinks
DirectoryIndex index.php
AllowOverride All
</Directory>Step 2: Create the .htaccess File
/usr/share/phpmyadmin/.htaccessPaste in the code below:
AuthType Basic
AuthName "Restricted Files"
AuthUserFile /etc/phpmyadmin/.htpasswd
Require valid-userStep 3: Create the .htpasswd File and Username
Pasting the code below conveniently makes a .htpasswd file while simultaneously creating a user. Replace the username in this example with the username of your choice. I’m going to choose the username, tom, which we will use in Step 4.
sudo htpasswd -c /etc/phpmyadmin/.htpasswd usernameIf we read this file we will find that it has added this user and has encrypted their password:
~# cat /etc/phpmyadmin/.htpasswd
tom:$apr1$fi4fis3.$oDVeDWxsp5eDhk.gc/DT991Step 4: Verify Pop-Up Functionality
Visit http://yourhostname.com/phpmyadmin/ (replacing yourhostname.com with your server’s hostname or IP) to display a pop-up box where I will enter my username, tom, that I created in Step 3.
Securing by Changing URL to phpMyAdmin
Open the /etc/phpmyadmin/apache.conf file:
vim /etc/phpmyadmin/apache.confComment out the lineAlias /phpmyadmin /usr/share/phpmyadmin with a # (as pictured below) and add in your the new URL you want to access your phpMyAdmin instance.
#Alias /phpmyadmin /usr/share/phpmyadmin
Alias /mynewurl /usr/share/phpmyadminHit the ESC button and type :wq to save and quit.
Hope you find this blog post helpful.
Feel free to add comments and queries, that helps us to improve the quality of posts.
You can contact us at info@infotechbuddies.com
Thank you.