Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 4th February 2010, 22:42
fathertime fathertime is offline
Junior Member
 
Join Date: Jan 2010
Posts: 29
Thanks: 2
Thanked 0 Times in 0 Posts
Cool Phpmyadmin - htaccess Password protection

Is there a way to password protect the phpmyadmin, even by using just the standard process to make a password protected directory?

htpasswd/htaccess?


I don't feel like the server is secured while this is open. I was hoping to add another layer of security to the databases instead of the username/password of phpmyadmin. The link to the phpmyadmin installation is not in /var and I can't get the htpasswd/htaccess combo to work. Maybe I need to chmod?

Thank you, in advance.
Reply With Quote
Sponsored Links
  #2  
Old 5th February 2010, 09:31
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,981
Thanks: 825
Thanked 5,371 Times in 4,218 Posts
Default

What is the exact problem? You created the .htaccess and .htpasswd files in the phpmyadmin directory and it is not working? Which error messages do you get then?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 5th February 2010, 11:11
fathertime fathertime is offline
Junior Member
 
Join Date: Jan 2010
Posts: 29
Thanks: 2
Thanked 0 Times in 0 Posts
Red face

Debian Lenny/Ispconfig 3 Perfrect server setup.

When I go to one of the sites that I have set up via IspConfig3, and add the subdomain "phpmyadmin" it resolves to the phpmyadmin login page. But, there is no folder in /var/www/domain.name/web/ for phpmyadmin. I tried to load .htaccess and .htpasswd at /usr/share/phpmyadmin. It didn't work.

Am I in the wrong place?

Thank you for responding.
Reply With Quote
  #4  
Old 8th April 2010, 00:57
fathertime fathertime is offline
Junior Member
 
Join Date: Jan 2010
Posts: 29
Thanks: 2
Thanked 0 Times in 0 Posts
Default Never got phpmyadmin protected.

Now they are hacking me.

I could never get the htaccess to work for me in the shared folder.

What to do? What to do?
Reply With Quote
  #5  
Old 8th April 2010, 10:04
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,981
Thanks: 825
Thanked 5,371 Times in 4,218 Posts
Default

And why do you think that someone is hacking you? If you dont provide more information, nobody is able to help you.

Have you installed all debian lenny updates?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #6  
Old 8th April 2010, 13:07
fathertime fathertime is offline
Junior Member
 
Join Date: Jan 2010
Posts: 29
Thanks: 2
Thanked 0 Times in 0 Posts
 
Question Still watching the logs.

Thanks Till,

I am still watching the apache logs. They are going right for the phpmyadmin and mail folders, but they are using several variations of urls (not exact nor specific). I've been blocking ips individually, but they can change ips fairly easily, which is why I'd like to block via htaccess.

I don't know why I can't use htaccess in the shared folder of phpmyadmin.

I just went back and reviewed my access.log - error.log files and they have been getting the 404. So, I did panic a bit much. The attacks are coming from Asia and Latin America.

What scares me is: I don't remember installing open office. I used the Lenny/Ispconfig3 Perfect server setup. I see it in the /etc folder. Am I just paranoid?
UPDATE: The OpenOffice folder is for a dictionary/spell check, it's not the full version.

Thanks Till.

Last edited by fathertime; 8th April 2010 at 13:10. Reason: Update on OpenOffice.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Forbidden 403; Samba access; config of maildeamon fawkes Installation/Configuration 4 14th January 2010 18:16
Yet Another Internal Server Error/.htaccess Post n0h4t Installation/Configuration 5 16th June 2009 17:43
phpmyadmin password hash montezuma Installation/Configuration 5 14th June 2006 13:57
How to install BFD (Brute Force Detection) domino Tips/Tricks/Mods 9 31st March 2006 22:40
ispconfig and mambo shajazzi Installation/Configuration 70 28th March 2006 19:29


All times are GMT +2. The time now is 11:38.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.