diff options
author | Remi Collet <remi@remirepo.net> | 2020-03-24 11:58:47 +0100 |
---|---|---|
committer | Remi Collet <remi@remirepo.net> | 2020-03-24 11:58:47 +0100 |
commit | 5e11d323aca6b3fd9f07e5f4ca35c67719d1a265 (patch) | |
tree | 50b7f1660e7918a956637e3b2da27f8334ccc962 /phpMyAdmin.htaccess22 | |
parent | ad37f18d7f07e5c09aa88174406bb986def34138 (diff) |
cleanup httpd configuration
Diffstat (limited to 'phpMyAdmin.htaccess22')
-rw-r--r-- | phpMyAdmin.htaccess22 | 103 |
1 files changed, 103 insertions, 0 deletions
diff --git a/phpMyAdmin.htaccess22 b/phpMyAdmin.htaccess22 new file mode 100644 index 0000000..64d7e9a --- /dev/null +++ b/phpMyAdmin.htaccess22 @@ -0,0 +1,103 @@ +# phpMyAdmin - Web based MySQL browser written in php +# +# Allows only localhost by default +# +# But allowing phpMyAdmin to anyone other than localhost should be considered +# dangerous unless properly secured by SSL + +Alias /phpMyAdmin /usr/share/phpMyAdmin +Alias /phpmyadmin /usr/share/phpMyAdmin + +<Directory /usr/share/phpMyAdmin/> + AddDefaultCharset UTF-8 + + <IfModule mod_authz_core.c> + # Apache 2.4 + Require local + </IfModule> + <IfModule !mod_authz_core.c> + # Apache 2.2 + Order Deny,Allow + Deny from All + Allow from 127.0.0.1 + Allow from ::1 + </IfModule> +</Directory> + +<Directory /usr/share/phpMyAdmin/setup/> + <IfModule mod_authz_core.c> + # Apache 2.4 + Require local + </IfModule> + <IfModule !mod_authz_core.c> + # Apache 2.2 + Order Deny,Allow + Deny from All + Allow from 127.0.0.1 + Allow from ::1 + </IfModule> +</Directory> + +# These directories do not require access over HTTP - taken from the original +# phpMyAdmin upstream tarball +# +<Directory /usr/share/phpMyAdmin/libraries/> + <IfModule mod_authz_core.c> + # Apache 2.4 + Require all denied + </IfModule> + <IfModule !mod_authz_core.c> + # Apache 2.2 + Order Deny,Allow + Deny from All + Allow from None + </IfModule> +</Directory> + +<Directory /usr/share/phpMyAdmin/templates/> + <IfModule mod_authz_core.c> + # Apache 2.4 + Require all denied + </IfModule> + <IfModule !mod_authz_core.c> + # Apache 2.2 + Order Deny,Allow + Deny from All + Allow from None + </IfModule> +</Directory> + +<Directory /usr/share/phpMyAdmin/setup/lib/> + <IfModule mod_authz_core.c> + # Apache 2.4 + Require all denied + </IfModule> + <IfModule !mod_authz_core.c> + # Apache 2.2 + Order Deny,Allow + Deny from All + Allow from None + </IfModule> +</Directory> + +<Directory /usr/share/phpMyAdmin/setup/frames/> + <IfModule mod_authz_core.c> + # Apache 2.4 + Require all denied + </IfModule> + <IfModule !mod_authz_core.c> + # Apache 2.2 + Order Deny,Allow + Deny from All + Allow from None + </IfModule> +</Directory> + +# This configuration prevents mod_security at phpMyAdmin directories from +# filtering SQL etc. This may break your mod_security implementation. +# +#<IfModule mod_security.c> +# <Directory /usr/share/phpMyAdmin/> +# SecRuleInheritance Off +# </Directory> +#</IfModule> |