16) Install phpMyAdmin

<-- Previous    Next –>

So far we have PHP, MySQL and Apache 2 installed on the server now we can install Install phpMyAdmin which is a web application to administer MySQL.

The easiest way to install phpMyAdmin is through apt-get:

sudo apt-get install phpmyadmin

During the installation, phpMyAdmin will walk you through a basic configuration. Once the process starts up, follow these steps:

  • Select Apache2 for the server
  • Choose YES when asked about whether to Configure the database for phpMyAdmin with dbconfig-common
  • Enter your MySQL password when prompted
  • Enter the password that you want to use to log into phpMyAdmin web interface
  • After the installation has completed, add phpMyAdmin to the Apache configuration.
sudo nano /etc/apache2/apache2.conf

Add the following line to the file:

Include /etc/phpmyadmin/apache.conf

This can be placed at the end of the file.

Restart Apache using:

sudo service apache2 restart

You can then access phpMyAdmin by going to http://youripaddress/phpmyadmin.

Security of phpMyAdmin

To add an extra level of security it is recommended to use the htaccess / htpasswd system to stop anyone accessing the web pages.

Set Up the .htaccess File

To set this up, start off by allowing the .htaccess file to work within the phpMyAdmin directory.

sudo nano /etc/phpmyadmin/apache.conf

Under the directory section, add the line “AllowOverride All” under “Directory Index”, so the section will look like this:

<Directory /usr/share/phpmyadmin>
Options FollowSymLinks
DirectoryIndex index.php
AllowOverride All
[…]

Configure the .htaccess file

With the .htaccess file allowed, we can proceed to set up an login to access the phpmyadmin web page.

Start by creating the .htaccess page in the phpMyAdmin directory:

sudo nano /usr/share/phpmyadmin/.htaccess

Then enter the following:

AuthType Basic
AuthName “Restricted Files”
AuthUserFile /etc/phpmyadmin/.htpasswd
Require valid-user

Below you’ll see a quick explanation of each line:

AuthType: This refers to the type of authentication that will be used to the check the passwords. The passwords are checked via HTTP and the keyword Basic should not be changed.
AuthName: This is text that will be displayed at the password prompt. You can put anything here.
AuthUserFile: This line designates the server path to the password file (which we will create in the next step.)
Require valid-user: This line tells the .htaccess file that only users defined in the password file can access the phpMyAdmin login screen.

Create the htpasswd file

Now we will go ahead and create the valid user / password information.

Start by creating a htpasswd file. Use the htpasswd command, and place the file in a directory of your choice as long as it is not accessible from a browser. Although you can name the password file whatever you prefer, the convention is to name it .htpasswd.

sudo htpasswd -c /etc/phpmyadmin/.htpasswd username

Where username is the username of your choice.

A prompt will ask you to provide and confirm your password.

Once the username and passwords pair are saved you can see that the password is encrypted in the file.

Now restart Apache:

sudo service apache2 restart

Accessing phpMyAdmin

Now when you go to the web page http://servername/phpmyadmin a login box will be displayed.

Fill it in with the username and password that you generated. After you login you can access phpmyadmin with the MySQL username and password as before.

<-- Previous    Next –>