diff options
Diffstat (limited to 'phpMyAdmin.htaccess')
| -rw-r--r-- | phpMyAdmin.htaccess | 73 | 
1 files changed, 73 insertions, 0 deletions
| diff --git a/phpMyAdmin.htaccess b/phpMyAdmin.htaccess new file mode 100644 index 0000000..e2d301f --- /dev/null +++ b/phpMyAdmin.htaccess @@ -0,0 +1,73 @@ +# phpMyAdmin - Web based MySQL browser written in php +#  +# Allows only localhost by default +# +# But allowing phpMyAdmin to anyone other than localhost should be considered +# dangerous unless properly secured by SSL + +Alias /phpMyAdmin /usr/share/phpMyAdmin +Alias /phpmyadmin /usr/share/phpMyAdmin + +<Directory /usr/share/phpMyAdmin/> +   <IfModule mod_authz_core.c> +     # Apache 2.4 +     <RequireAny> +       Require ip 127.0.0.1 +       Require ip ::1 +     </RequireAny> +   </IfModule> +   <IfModule !mod_authz_core.c> +     # Apache 2.2 +     Order Deny,Allow +     Deny from All +     Allow from 127.0.0.1 +     Allow from ::1 +   </IfModule> +</Directory> + +<Directory /usr/share/phpMyAdmin/setup/> +   <IfModule mod_authz_core.c> +     # Apache 2.4 +     <RequireAny> +       Require ip 127.0.0.1 +       Require ip ::1 +     </RequireAny> +   </IfModule> +   <IfModule !mod_authz_core.c> +     # Apache 2.2 +     Order Deny,Allow +     Deny from All +     Allow from 127.0.0.1 +     Allow from ::1 +   </IfModule> +</Directory> + +# These directories do not require access over HTTP - taken from the original +# phpMyAdmin upstream tarball +# +<Directory /usr/share/phpMyAdmin/libraries/> +    Order Deny,Allow +    Deny from All +    Allow from None +</Directory> + +<Directory /usr/share/phpMyAdmin/setup/lib/> +    Order Deny,Allow +    Deny from All +    Allow from None +</Directory> + +<Directory /usr/share/phpMyAdmin/setup/frames/> +    Order Deny,Allow +    Deny from All +    Allow from None +</Directory> + +# This configuration prevents mod_security at phpMyAdmin directories from +# filtering SQL etc.  This may break your mod_security implementation. +# +#<IfModule mod_security.c> +#    <Directory /usr/share/phpMyAdmin/> +#        SecRuleInheritance Off +#    </Directory> +#</IfModule> | 
