Yadda ake kashe tushen shiga shiga PhpMyAdmin


Idan kuna shirin yin amfani da phpmyadmin akai-akai don sarrafa bayananku akan hanyar sadarwa (ko mafi muni, akan Intanet!), Ba kwa son amfani da tushen asusun. Wannan yana aiki ba kawai don phpmyadmin ba amma har ma da duk wata hanyar sadarwa ta yanar gizo.

A cikin /etc/phpmyadmin/config.inc.php, nemi layi mai zuwa kuma tabbatar an saita umarnin AllowRoot zuwa KARYA:

$cfg['Servers'][$i]['AllowRoot'] = FALSE;

A cikin Ubuntu/Debian, kuna buƙatar ƙara waɗannan layi biyu kamar yadda aka nuna:

/* Authentication type */
$cfg['Servers'][$i]['auth_type'] = 'cookie';
$cfg['Servers'][$i]['AllowRoot'] = false;

Ajiye canje-canje kuma sake kunna Apache.

------------- On CentOS/RHEL Systems -------------
# systemctl restart httpd.service

------------- On Debian/Ubuntu Systems -------------
# systemctl restart apache2.service

Sannan bi matakan da aka zayyana a cikin shawarwarin da ke sama don zuwa shafin shiga phpmyadmin (https:///phpmyadmin) sannan ka yi kokarin shiga a matsayin tushen:

Sa'an nan haɗi zuwa MySQL/MariaDB database ta hanyar umarni da sauri kuma, ta amfani da tushen shaidarka, ƙirƙira adadin asusu kamar yadda ake buƙata don samun damar bayanai guda ɗaya kowanne. A wannan yanayin za mu ƙirƙiri asusu mai suna jdoe tare da kalmar sirri jdoespassword:

# mysql -u root -p
Enter password: 
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 24
Server version: 10.1.14-MariaDB MariaDB Server

Copyright (c) 2000, 2016, Oracle, MariaDB Corporation Ab and others.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]> CREATE USER 'jdoe'@'localhost' IDENTIFIED BY 'jdoespassword';
Query OK, 0 rows affected (0.04 sec)

MariaDB [(none)]> GRANT ALL PRIVILEGES ON gestion.* to 'jdoe'@'localhost';
Query OK, 0 rows affected (0.00 sec)

Sa'an nan kuma bari mu shiga ta amfani da bayanan shaidar da ke sama. Kamar yadda kuke gani, wannan asusun yana da damar zuwa bayanai guda ɗaya kawai:

Taya murna! Kun hana tushen shigar da phpmyadmin ɗinku kuma yanzu kuna iya amfani da shi don sarrafa bayananku.

Ina ba ku shawara mai ƙarfi don ƙara ƙarin tsaro zuwa shigarwar phpmyadmin ɗinku tare da saitin HTTPS (takardar SSL) don guje wa aika sunan mai amfani da kalmar wucewa a tsarin rubutu a sarari akan hanyar sadarwa.