secured phpmyadmin with htaccess/htpasswd

2016-09-16 16:36:17 +02:00 · 2016-09-16 16:36:17 +02:00 · 8aa2f3e162
commit 8aa2f3e162
parent 9d4534e93b
2 changed files with 14 additions and 0 deletions
--- a/assets/phpmyadmin_htaccess
+++ b/assets/phpmyadmin_htaccess
@ -0,0 +1,4 @@
+AuthType Basic
+AuthName "Restricted Files"
+AuthUserFile /etc/phpmyadmin/.htpasswd
+Require valid-user
--- a/install-debian-server.sh
+++ b/install-debian-server.sh
@ -274,6 +274,13 @@ echo "\033[35;1mInstalling phpMyAdmin \033[0m"
 apt-get install phpmyadmin
 # echo "include /etc/phpmyadmin/apache.conf" >> /etc/apache2/apache2.conf
 ln -s /etc/phpmyadmin/apache.conf /etc/apache2/conf.d/phpmyadmin.conf
+echo "\033[35;1msecuring phpMyAdmin \033[0m"
+sed -i "s/DirectoryIndex index.php/DirectoryIndex index.php\nAllowOverride all/"
+cp "$_cwd"/assets/phpmyadmin_htaccess > /usr/share/phpmyadmin/.htaccess
+echo -n "define a user name for phpmyadmin : "
+read un
+htpasswd -c /etc/phpmyadmin/.htpasswd $un
+service apache2 restart
 echo "\033[92;1mphpMyAdmin installed\033[Om"
 echo "\033[92;1mYou can access it at yourip/phpmyadmin\033[Om"

@ -425,6 +432,9 @@ echo "\033[92;1mDot files installed for root, you should installed them manually

 # TODO add warning message on ssh connection if system needs updates

+# TODO install and configure tmux
+
+
 echo '\033[35m
                  __
  ___  ____  ____/ /