![]() ![]() Install the PHP version best suited for the current operating system: $ sudo apt install php libapache2-mod-php php-mysql php-mbstring php-common php-xml php-json php-devīe sure to include all of the PHP libraries that your system will actually need, as each installation is different. Uninstall the packages, avoiding the use of wildcards like php* because there's too much risk involved with wildcards List all installed packages with PHP: $ sudo apt list -installed | grep php Note: If you have multiple versions of PHP installed on your system as a result of multiple Ubuntu upgrades over the years, then it may be a good idea to uninstall them all and pull in just the most recent version. Given the number of bots that are actively scanning public IP addresses for older versions of phpMyAdmin to break into, it would be a good idea to always run the most recent release of the software. zip and dropping it in a directory, you'll need to download an updated version from the project website and bring the code up to date. If you installed phpMyAdmin by downloading a. Sudo apt install phpmyadmin php-gettext php-mbstring -y If you installed phpMyAdmin via the command line, then you can do this: sudo apt remove -purge phpmyadmin php-gettext php-mbstring -y These functions were deprecated a few years ago when PHP7.0 came out, so you'll need to update the software. We will create a new settings file inside /etc/phpmyadmin/conf.d, and name it pma_secure.This would be due to running an old version of phpMyAdmin. We’ll create a new file to define our custom settings.Įven if the PHP files for the software are placed inside /usr/share/phpmyadmin, the application will use setup files located at /etc/phpmyadmin. With this, even if you give credentials for the user root, you won’t have your access allowed.Īs we used dbconfig-common to set up and store phpMyAdmin settings, the default configuration is now stored in the database. It’s not only a privileged account, but also a known login name, which turns it into an obvious target for attacks.Īiming to minimize risks, we’ll configure phpMyAdmin to deny any login attempts that comes from the user root. On MySQL, the root account is a special administrative account with no restrictions to access the system. ![]() As prerequisites, it is necessary to have root access to the server and firewall configured with ufw. Now your interface will be available at the new URL you’ve just set up: By hiding phpMyAdmin’s real location on the server, you’re ensuring your interface is secure against automated scans and manual attempts. In this article, let’s see how our Support Engineers install and secure phpMyAdmin so that users can safely use it to manage the databases on an Ubuntu 18.04 system. But first, let’s update the server’s package index using the following command: Through Ubuntu repositories, install phpMyAdmin on your LEMP server. Otherwise, ensure you enforce access via SSH Tunnels, as we’ll explain along this tutorial. As phpMyAdmin uses MySQL credentials to authenticate, you should also install an SSL/TLS certificate in order to enable encrypted traffic between server and client.Access to the server as a non-root user with sudo privileges.An Ubuntu 18.04 server with a LEMP stack secured with ufw.This is a free software tool that allow users to interact with MySQL through an intuitive interface. In this tutorial, we’ll show how to install phpMyAdmin with Nginx server. But we know that managing a database system like MySQL directly from its command-line client demands certain familiarity with the system, which can be a challenge sometimes. Using a database system is a necessity that many people have. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |