PHP MyAdmin Setup - Security Hints for Installation

Submitted by slackstone on Fri, 12/10/2021 - 05:12

PHP MyAdmin is a great tool. Here are some hints on securing the installation.  It's easy :-)

Move the URL to a publicly unknown *secret* path, then really protect it with an Apache firewall rule.

  1. Set the app path with a simple apache alias the URL. This only prevents fingerprinting the system.
  2. Set the location to only allow Local Networks or a VPN.

Bonus: the "/phpmyadmin" path makes a nice expression for a Fail2ban tripwire.