This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
deb11:phpmyadmin [2022/09/26 10:27] – Bernard Condrau | deb11:phpmyadmin [2022/09/26 11:15] – Bernard Condrau | ||
---|---|---|---|
Line 10: | Line 10: | ||
===== Configuration ===== | ===== Configuration ===== | ||
- | - We will not use any of the standard path used in Debian versions up to 9 or in other distributions. All files related to phpMyAdmin will remain in the custom path where we moved the downloaded files which is the easiest way to later maintain | + | - We will not use any of the standard path used in Debian versions up to 9 or in other distributions. All files related to phpMyAdmin will remain in the custom path where we moved the downloaded files which is the easiest way for maintenance and later version upgrades |
- | - Make a new directory for phpMyAdmin to store its temporary files:< | + | - Make a new directory for phpMyAdmin to store its temporary files:< |
- Copy '' | - Copy '' | ||
- Use the [[https:// | - Use the [[https:// | ||
$cfg[' | $cfg[' | ||
- | - Add the following custom settings to '' | + | - Add the following custom settings to '' |
- | $cfg[' | + | $cfg[' |
- | $cfg[' | + | $cfg[' |
- | $cfg[' | + | $cfg[' |
- | $cfg[' | + | $cfg[' |
+ | $cfg[' | ||
+ | - You may check [[https:// | ||
+ | - Leave the commented out settings in '' | ||
+ | - Create ''/ | ||
- | </code> | + | Alias /phpmyadmin /home/bco/html/phpMyAdmin |
- | - https:// | + | |
- | * Copy folder {{: | + | |
- | * Symlink the configuration files for apache:< | + | |
- | ln -s ../ | + | |
- | cd ../ | + | |
- | ln -s ../ | + | |
- | * Symlink the configuration files for phpmyadmin in it's root folder:< | + | |
- | ln -s / | + | |
- | ln -s / | + | |
- | ln -s / | + | |
- | * Create a additional config file with the path to the **tmp** directory:< | + | |
- | <?php | + | |
- | $cfg[' | + | |
- | * Make sure the // | + | |
- | SELECT user,host FROM mysql.user; | + | |
- | CREATE USER ' | + | |
- | GRANT USAGE ON phpmyadmin.* TO phpmyadmin</ | + | |
- | * The password is in file / | + | |
- | sudo chmod 640 / | + | |
- | * Create a regular MariaDB user for the purpose of managing databases through phpMyAdmin, as it’s recommended that you log in using another account than the pma user. You could create a user that has privileges to all tables within the database, as well as the power to add, change, and remove user privileges, with this command. Whatever privileges you assign to this user, be sure to give it a strong password as well:< | + | |
- | GRANT ALL PRIVILEGES ON *.* TO ' | + | |
- | exit</ | + | |
- | * [[https:// | + | |
- | ==== Manual Upgrade on Debian 9 ==== | + | <Directory |
- | * Check latest version of [[https:// | + | Options |
- | * Download and install<code> | + | |
- | sudo wget https:// | + | |
- | tar xzf phpMyAdmin-5.1.0-english.tar.gz | + | |
- | sudo mv phpMyAdmin-5.1.0-english phpmyadmin</ | + | |
- | * Modify the following lines in / | + | |
- | define(' | + | |
- | * See [[https:// | + | |
- | + | ||
- | ===== Securing Your phpMyAdmin Instance ===== | + | |
- | Edit / | + | |
- | Alias /phpmyadmin / | + | |
- | < | + | |
- | Options | + | |
DirectoryIndex index.php | DirectoryIndex index.php | ||
- | + | ||
- | # Allow user to access without password | + | < |
- | Include conf-available/ | + | |
- | | + | |
- | < | + | |
< | < | ||
AddType application/ | AddType application/ | ||
Line 73: | Line 38: | ||
SetHandler application/ | SetHandler application/ | ||
</ | </ | ||
- | + | ||
- | php_flag magic_quotes_gpc Off | + | |
- | php_flag track_vars On | + | |
- | php_flag register_globals Off | + | |
- | php_admin_flag allow_url_fopen Off | + | |
php_value include_path . | php_value include_path . | ||
- | php_admin_value upload_tmp_dir /var/lib/phpmyadmin/tmp | + | php_admin_value upload_tmp_dir /home/bco/html/ |
- | php_admin_value open_basedir /usr/share/phpmyadmin/:/ | + | php_admin_value open_basedir /home/bco/html/phpMyAdmin/:/ |
</ | </ | ||
- | </ | ||
- | conf-available/ | + | </Directory> |
- | | + | |
- | | + | # Authorize for setup |
+ | < | ||
+ | < | ||
+ | < | ||
+ | AuthType Basic | ||
+ | AuthName " | ||
+ | AuthUserFile / | ||
+ | </ | ||
+ | Require valid-user | ||
+ | </ | ||
+ | </ | ||
+ | |||
+ | # Disallow web access to directories that don't need it | ||
+ | < | ||
+ | Require all denied | ||
+ | </ | ||
+ | < | ||
+ | Require all denied | ||
+ | </ | ||
+ | < | ||
+ | Require all denied | ||
+ | </ | ||
+ | |||
+ | # Secure access to phpMyAdmin by restricting access to it's parent, for example by IP address or domain name, local or external | ||
+ | < | ||
+ | < | ||
+ | Require ip 127.0.0.1 | ||
+ | Require forward-dns ddns.domain.name | ||
+ | </ | ||
+ | </ | ||
+ | </ | ||
+ | - You can replace the directives for the setup directory with '' | ||
+ | - Symlink the configuration file for Apache and restart the service:< | ||
+ | $ sudo service apache2 restart</ | ||
+ | | ||
+ | MariaDB [(none)]> | ||
+ | MariaDB [(none)]> | ||
+ | MariaDB [(none)]> | ||
+ | |||
+ | ===== Run phpMyAdmin ===== | ||
+ | | ||
+ | |||
===== Links ===== | ===== Links ===== | ||
* [[https:// | * [[https:// | ||
* [[https:// | * [[https:// |