summaryrefslogtreecommitdiffstats
path: root/phpMyAdmin.htaccess22
diff options
context:
space:
mode:
authorRemi Collet <remi@remirepo.net>2020-03-24 11:58:47 +0100
committerRemi Collet <remi@remirepo.net>2020-03-24 11:58:47 +0100
commit5e11d323aca6b3fd9f07e5f4ca35c67719d1a265 (patch)
tree50b7f1660e7918a956637e3b2da27f8334ccc962 /phpMyAdmin.htaccess22
parentad37f18d7f07e5c09aa88174406bb986def34138 (diff)
cleanup httpd configuration
Diffstat (limited to 'phpMyAdmin.htaccess22')
-rw-r--r--phpMyAdmin.htaccess22103
1 files changed, 103 insertions, 0 deletions
diff --git a/phpMyAdmin.htaccess22 b/phpMyAdmin.htaccess22
new file mode 100644
index 0000000..64d7e9a
--- /dev/null
+++ b/phpMyAdmin.htaccess22
@@ -0,0 +1,103 @@
+# phpMyAdmin - Web based MySQL browser written in php
+#
+# Allows only localhost by default
+#
+# But allowing phpMyAdmin to anyone other than localhost should be considered
+# dangerous unless properly secured by SSL
+
+Alias /phpMyAdmin /usr/share/phpMyAdmin
+Alias /phpmyadmin /usr/share/phpMyAdmin
+
+<Directory /usr/share/phpMyAdmin/>
+ AddDefaultCharset UTF-8
+
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require local
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order Deny,Allow
+ Deny from All
+ Allow from 127.0.0.1
+ Allow from ::1
+ </IfModule>
+</Directory>
+
+<Directory /usr/share/phpMyAdmin/setup/>
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require local
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order Deny,Allow
+ Deny from All
+ Allow from 127.0.0.1
+ Allow from ::1
+ </IfModule>
+</Directory>
+
+# These directories do not require access over HTTP - taken from the original
+# phpMyAdmin upstream tarball
+#
+<Directory /usr/share/phpMyAdmin/libraries/>
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require all denied
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order Deny,Allow
+ Deny from All
+ Allow from None
+ </IfModule>
+</Directory>
+
+<Directory /usr/share/phpMyAdmin/templates/>
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require all denied
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order Deny,Allow
+ Deny from All
+ Allow from None
+ </IfModule>
+</Directory>
+
+<Directory /usr/share/phpMyAdmin/setup/lib/>
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require all denied
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order Deny,Allow
+ Deny from All
+ Allow from None
+ </IfModule>
+</Directory>
+
+<Directory /usr/share/phpMyAdmin/setup/frames/>
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require all denied
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order Deny,Allow
+ Deny from All
+ Allow from None
+ </IfModule>
+</Directory>
+
+# This configuration prevents mod_security at phpMyAdmin directories from
+# filtering SQL etc. This may break your mod_security implementation.
+#
+#<IfModule mod_security.c>
+# <Directory /usr/share/phpMyAdmin/>
+# SecRuleInheritance Off
+# </Directory>
+#</IfModule>