access to phpmyadmin ban ip addresses

vask0 · 01-09-2019, 05:59 AM

Hi i want to ask how can i limit access to phpmyadmin who is in your folder site/admin

I only want certain IP addresses to be able to access this folder and everyone else can not

os: debian 9

10x!!!

bathory · 01-09-2019, 07:20 AM

Quote:

Originally Posted by vask0

Hi i want to ask how can i limit access to phpmyadmin who is in your folder site/admin

I only want certain IP addresses to be able to access this folder and everyone else can not

os: debian 9

10x!!!

You didn't mention the webserver software you're running, but if it's apache, you should take a look at here

Regards

vask0 · 01-09-2019, 01:16 PM

Quote:

Originally Posted by bathory

You didn't mention the webserver software you're running, but if it's apache, you should take a look at here

Regards

Here I think I forbid any and all ip-addresses to visit the server,? I must be banned from the specified directive so that it can not be ip-accessed from all ip-addresses and I can determine which adress will have access to the directory

scasey · 01-09-2019, 04:12 PM

bathory's advice can be applied to a single directory, if that's what you want to do. It doesn't have to apply to the entire server.

I did two things to limit access to phpmyadmin:
1. changed the name of the directory where it lives, and therefore the URL to reach it.
2. Used mod auth to require a userid and password to see the login to phpmyadmin.

Yes, I have to log in twice, but without the first login, no one else can even see the phpmyadmin login.

I've opted NOT to limit by IP address because
1. my home IP address is dynamic and could change
2. I may not be at home when I need to access phpmyadmin

vask0 · 01-10-2019, 01:34 AM

Quote:

Originally Posted by scasey

bathory's advice can be applied to a single directory, if that's what you want to do. It doesn't have to apply to the entire server.

I did two things to limit access to phpmyadmin:
1. changed the name of the directory where it lives, and therefore the URL to reach it.
2. Used mod auth to require a userid and password to see the login to phpmyadmin.

Yes, I have to log in twice, but without the first login, no one else can even see the phpmyadmin login.

I've opted NOT to limit by IP address because
1. my home IP address is dynamic and could change
2. I may not be at home when I need to access phpmyadmin

In short, I want to do something like thi link

I do the instructions but it does not work. folder site.com/admin where it is accessed again from all IP addresses

As I mentioned, it is about:

OS: Debian server 9

Software:

Code:

apachectl -V
Server version: Apache/2.4.25 (Debian)
Server built:   2018-11-03T18:46:19
Server's Module Magic Number: 20120211:68
Server loaded:  APR 1.5.2, APR-UTIL 1.5.4
Compiled using: APR 1.5.2, APR-UTIL 1.5.4
Architecture:   32-bit
Server MPM:     prefork
  threaded:     no
    forked:     yes (variable process count)
Server compiled with....
 -D APR_HAS_SENDFILE
 -D APR_HAS_MMAP
 -D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
 -D APR_USE_SYSVSEM_SERIALIZE
 -D APR_USE_PTHREAD_SERIALIZE
 -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
 -D APR_HAS_OTHER_CHILD
 -D AP_HAVE_RELIABLE_PIPED_LOGS
 -D DYNAMIC_MODULE_LIMIT=256
 -D HTTPD_ROOT="/etc/apache2"
 -D SUEXEC_BIN="/usr/lib/apache2/suexec"
 -D DEFAULT_PIDLOG="/var/run/apache2.pid"
 -D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
 -D DEFAULT_ERRORLOG="logs/error_log"
 -D AP_TYPES_CONFIG_FILE="mime.types"
 -D SERVER_CONFIG_FILE="apache2.conf"

bathory · 01-10-2019, 02:41 AM

Quote:

In short, I want to do something like thi link

I do the instructions but it does not work. folder site.com/admin where it is accessed again from all IP addresses

Could you show us the relevant part of your apache config file?
Also make sure you clear the browser cache before testing.

Regards

scasey · 01-10-2019, 02:48 AM

...and did you restart Apache after making the change?