==================================================================
Please DO NOT REPLY to this mail or send email to the developers
about this bug. Please follow-up to Bugzilla using this link:
http://bugs.contribs.org/show_bug.cgi?id=7628
Have you checked the Frequently Asked Questions (FAQ)?
http://wiki.contribs.org/SME_Server:Documentation:FAQ
Please also take the time to read the following useful guide:
http://www.chiark.greenend.org.uk/~sgtatham/bugs.html
==================================================================
--- Comment #1 from Unnilennium <[email protected]> ---
here is how I might deal with two packages.
I am thinking to merge both or at least, to make smeserver-phpmyadmin a
dependency of smeserver-phpmyadmin-multiuser.
as a resumé :
- the difference between httpauth for admin and multiuser db login is the URL
to access
- the whole config.inc.php is templated in smeserver-phpmyadmin, only cookie
part is templated in smeserver-phpmyadmin-multiuser
- part of the config used depends on url
- a security is inserted in the config.inc.php, to ensure admin is logged .
here How I would handle httpd.conf part :
#####################################################################################################
# phpmyadmin
Alias /phpmyadmin /usr/share/phpMyAdmin
<Location /phpmyadmin>
AuthName "phpmyadmin"
AuthType Basic
AuthExternal pwauth
require user admin
</Location>
<Directory /usr/share/phpMyAdmin>
SSLRequireSSL
Options -Indexes
AllowOverride None
order deny,allow
deny from all
allow from 127.0.0.1 192.168.1.0/255.255.255.0
Satisfy all
AddType application/x-httpd-php .php .php3
php_flag magic_quotes_gpc off
php_flag track_vars on
</Directory>
# phpMyAdmin-multiuser
Alias /phpmyadmin-multi /usr/share/phpMyAdmin
<Directory /usr/share/phpMyAdmin>
SSLRequireSSL
Options -Indexes
AllowOverride None
order deny,allow
deny from all
allow from 127.0.0.1 192.168.1.0/255.255.255.0
Satisfy all
AddType application/x-httpd-php .php .php3
php_flag magic_quotes_gpc off
php_flag track_vars on
php_admin_value open_basedir
/usr/share/php:/usr/share/phpMyAdmin:/etc/phpMyAdmin:/var/lib/phpMyAdmin:/tmp
</Directory>
<Directory /usr/share/phpMyAdmin/scripts>
SSLRequireSSL
Options -Indexes
AllowOverride None
order deny,allow
deny from all
allow from 127.0.0.1 192.168.1.0/255.255.255.0
AuthName "phpMyadmin Scripts (Admin)"
AuthType Basic
AuthExternal pwauth
require user admin
Satisfy all
AddType application/x-httpd-php .php .php3
php_flag magic_quotes_gpc off
php_flag track_vars on
</Directory>
<Directory /usr/share/phpMyAdmin/libraries >
order deny,allow
deny from all
</Directory>
#####################################################################################################
here for config.inc.php
#####################################################################################################
if ($scriptpath=="/phpmyadmin/" && $_SERVER['PHP_AUTH_USER']=="admin")
{
$cfg['Servers'][$i]['auth_type'] = 'config';
$cfg['Servers'][$i]['user'] = 'root';
$cfg['Servers'][$i]['password']= 'uuuuu';
}
### multiuser template
if ($scriptpath=="/phpmyadmin-multi/")
{
$cfg['Servers'][$i]['auth_type'] = 'cookie';
$cfg['blowfish_secret'] = 'generated';
}
## end of multiuser template
#####################################################################################################
two questions:
- is this seems to be secure enough (Charlie, Shad) ?
- does it worth creating two packages or is it time to merge them ? ( i can
also imagine a switch to activate one. both and configure the url you want )
i am also open to all comment to secure more this.
--
You are receiving this mail because:
You are the QA Contact for the bug.
_______________________________________________
Mail for each SME Contribs bug report
To unsubscribe, e-mail [email protected]
Searchable archive at http://lists.contribs.org/mailman/public/contribteam/
