Solved phpmyadmin access

mpa · Oct 26, 2008

How do you change so only 127.0.0.1 can connect to PhpMyAdmin.

JayBeee · Oct 26, 2008

mpa · Oct 26, 2008

And where do i change so no other ip adresses can connect to phpmyadmin? So they can't even enter user and pass?

JayBeee · Oct 26, 2008

I can't check right now, since I'm on Linux and don't have phpmyadmin installed. But look around in there, I know it's there somewhere. IP filter or something like that.

Dark Warrior · Oct 26, 2008

Im not sure if it will work on the current phpmyadmin path since when i tested that dosent work for me and i had to move phpmyadmin into my httdocs folder to make it work and it's better because you can change de rout like http://localhost/SecretPhpMyAdmin or something anyway just move it and make an .htaccess

Code:

<Limit GET POST>

     order deny,allow

     deny from all

     allow from 127.0.0.1

</Limit>

Probb there is other ways and more easy but that the one i used..

EDIT: You have to log with localhost or 127.0.0.1 < Are the same but i was talking about urls XD

mpa · Oct 26, 2008

Dark Warrior said:
Im not sure if it will work on the current phpmyadmin path since when i tested that dosent work for me and i had to move phpmyadmin into my httdocs folder to make it work and it's better because you can change de rout like http://localhost/SecretPhpMyAdmin or something anyway just move it and make an .htaccess

Code:

<Limit GET POST> order deny,allow deny from all allow from 127.0.0.1 </Limit>

Probb there is other ways and more easy but that the one i used..

EDIT: You have to log with localhost or 127.0.0.1

Where should i write that text in the code box?
Please explain better i don't understand what you're saying... "just move it and make an .htaccess" <-- wtf??

Don Daniello · Oct 26, 2008

Create '.htaccess' file in the main directory of phpmyadmin and put it into

Tufte · Oct 26, 2008

Use this guide to restrict anyone but you to enter PhPmyadmin.

For example:

Code:

$cfg['Servers'][$i]['AllowDeny']['order']  = 'deny,allow';
$cfg['Servers'][$i]['AllowDeny']['rules'][] = 'allow % from 127.0.0.1';
$cfg['Servers'][$i]['AllowDeny']['rules'][] = 'allow % from 123.456.7.890';
$cfg['Servers'][$i]['AllowDeny']['rules'][] = 'allow % from 11.22.33.44';
$cfg['Servers'][$i]['AllowDeny']['rules'][] = 'deny % from all';

This allows only those with the IP 123.456.7.890 and 11.22.33.44 to enter PhPmyadmin, aswell as your local computer (127.0.0.1). Ofcourse, you can take away one if you only want yourself to enter Phpmyadmin.

This is in the config.ini file.

mpa · Oct 30, 2008

Thanks for the help.

Tufte · Mar 7, 2009

bump! I used alot of time finding back this post since i re-installe my xampp. I've tried alot of stuff, htacces and crap, but the only thing that works, is the code in my post above. Place it in the config.inc.php file and your safe.

This post should be sticky, since it would prevent ALOT of phpmyadmin hacks.

Solved phpmyadmin access

mpa

Member

JayBeee

Retired Global Mod

mpa

Member

JayBeee

Retired Global Mod

Dark Warrior

New Member

mpa

Member

Don Daniello

/root

Tufte

Active Member

mpa

Member

Tufte

Active Member