Share

Question

code:

phpMyAdmin - Web based MySQL browser written in php

Allows only localhost by default

But allowing phpMyAdmin to anyone other than localhost should be considered

dangerous unless properly secured by SSL

Alias /phpMyAdmin /usr/share/phpMyAdmin
Alias /phpmyadmin /usr/share/phpMyAdmin

<Directory /usr/share/phpMyAdmin/>
AddDefaultCharset UTF-8

<IfModule mod_authz_core.c>
# Apache 2.4
<RequireAny>
Require ip 127.0.0.1
Require ip ::1
</RequireAny>
</IfModule>
<IfModule !mod_authz_core.c>
# Apache 2.2
Order Deny,Allow
Deny from All
Allow from 127.0.0.1
Allow from ::1
</IfModule>
</Directory>

<Directory /usr/share/phpMyAdmin/setup/>
<IfModule mod_authz_core.c>
# Apache 2.4
<RequireAny>
Require ip 127.0.0.1
Require ip ::1
</RequireAny>
</IfModule>
<IfModule !mod_authz_core.c>
# Apache 2.2
Order Deny,Allow
Deny from All
Allow from 127.0.0.1
Allow from ::1
</IfModule>
</Directory>

These directories do not require access over HTTP - taken from the original

phpMyAdmin upstream tarball

<Directory /usr/share/phpMyAdmin/libraries/>
Order Deny,Allow
Deny from All
Allow from None
</Directory>

<Directory /usr/share/phpMyAdmin/setup/lib/>
Order Deny,Allow
Deny from All
Allow from None
</Directory>

<Directory /usr/share/phpMyAdmin/setup/frames/>
Order Deny,Allow
Deny from All
Allow from None
</Directory>

This configuration prevents mod_security at phpMyAdmin directories from

filtering SQL etc. This may break your mod_security implementation.

<IfModule mod_security.c>

SecRuleInheritance Off

</Directory>

</IfModule>

Answer 1

iteagle03 March 20, 2017

In my phpMyAdmin.conf file I replaced 127.0.0.1 (aka local host) to my current IP address. I use IP Location to find my IP address.

It is possible to use 127.0.0.1 while using a secure SSH tunnel using the Windows PuTTY application. I found this article that explains how to more securely access your phpMyAdmin installation then just hard coding an IP address in the phpMyAdmin.conf file. I would think this method would actually be preferred as everything isn’t sent as plain text.

Reply

tonylam69 March 20, 2017

*it’s an error code AH00526 syntax error on line 1. *
i am not sure what is the error on line 1

Answer 2

tonylam69 March 20, 2017

*it’s an error code AH00526 syntax error on line 1. *
i am not sure what is the error on line 1

I try to restart httpd.service and got an error code AH00526: Syntax error on line 1 of /etc/httpd/conf.d/phpMyAdmind.conf: please help

phpMyAdmin - Web based MySQL browser written in php

Allows only localhost by default

But allowing phpMyAdmin to anyone other than localhost should be considered

dangerous unless properly secured by SSL

These directories do not require access over HTTP - taken from the original

phpMyAdmin upstream tarball

This configuration prevents mod_security at phpMyAdmin directories from

filtering SQL etc. This may break your mod_security implementation.

<IfModule mod_security.c>

SecRuleInheritance Off

</Directory>

</IfModule>

Leave a Comment

Share

Share your Question

I try to restart httpd.service and got an error code AH00526: Syntax error on line 1 of /etc/httpd/conf.d/phpMyAdmind.conf: please help

phpMyAdmin - Web based MySQL browser written in php

Allows only localhost by default

But allowing phpMyAdmin to anyone other than localhost should be considered

dangerous unless properly secured by SSL

These directories do not require access over HTTP - taken from the original

phpMyAdmin upstream tarball

This configuration prevents mod_security at phpMyAdmin directories from

filtering SQL etc. This may break your mod_security implementation.

<IfModule mod_security.c>

<Directory /usr/share/phpMyAdmin/>

SecRuleInheritance Off

</Directory>

</IfModule>

Leave a Comment

Related

question

How to upgrade version sqlite3

question

Can not send email with php mailer using gmail account

question

How to install PHP modules

question

Magento shopping cart empty error

Almost there!