From 4c99674d5d05468b14e7621d177a05bb8cd6b843 Mon Sep 17 00:00:00 2001 From: Antennipasi <Antennipasi@ispconfig3> Date: Mon, 22 Dec 2008 10:28:26 -0500 Subject: [PATCH] Added info how to secure default phpMyAdmin install. More clearing. --- INSTALL_DEBIAN_LENNY.txt | 52 ++++++++++++++++++++++++++++++++++++++++++---------- 1 files changed, 42 insertions(+), 10 deletions(-) diff --git a/INSTALL_DEBIAN_LENNY.txt b/INSTALL_DEBIAN_LENNY.txt index 75eb86d..f376589 100644 --- a/INSTALL_DEBIAN_LENNY.txt +++ b/INSTALL_DEBIAN_LENNY.txt @@ -16,7 +16,8 @@ echo ispconfig.example.com > /etc/hostname vi /etc/hosts -and add line similar but appropriate: + +# and add line similar but appropriate: 127.0.0.1 localhost.localdomain localhost 192.168.0.100 ispconfig.example.com ispconfig @@ -48,7 +49,7 @@ Mail name? <-- server1.mydomain.tld SSL certificate required <-- Ok -...use your own domain name of course ;) +# ...use your own domain name of course ;) @@ -88,11 +89,42 @@ a2enmod suexec rewrite ssl +# Secure phpMyAdmin by deleting setuppassword-file +# and removing/commenting Setup Authorization from apache.conf + +rm /etc/phpmyadmin/htpasswd.setup + +vi /etc/phpmyadmin/apache.conf + +# delete/comment following lines (between the ----- lines): +------------------------------------------------------ + # Authorize for setup + <Files setup.php> + # For Apache 1.3 and 2.0 + <IfModule mod_auth.c> + AuthType Basic + AuthName "phpMyAdmin Setup" + AuthUserFile /etc/phpmyadmin/htpasswd.setup + </IfModule> + # For Apache 2.2 + <IfModule mod_authn_file.c> + AuthType Basic + AuthName "phpMyAdmin Setup" + AuthUserFile /etc/phpmyadmin/htpasswd.setup + </IfModule> + Require valid-user + </Files> +------------------------------------------------------ + + opt3.1) Optionally install some imagemanipulation capabilities to make advanced webdesigners happy apt-get install php5-imagick imagemagick +# restart apache before continuing +/etc/init.d/apache2 restart + 4) Install pure-ftpd and quota @@ -125,11 +157,11 @@ make make install -Now create the start / stop script for mydns: +# Now create the start / stop script for mydns: vi /etc/init.d/mydns -and enter the following lines (between the ----- lines): +# and enter the following lines (between the ----- lines): ------------------------------------------------------ #! /bin/sh @@ -190,7 +222,7 @@ exit 0 --------------------------------------------------------------------------- -now execute: +# now execute: chmod +x /etc/init.d/mydns update-rc.d mydns defaults @@ -202,7 +234,7 @@ 7) Install ISPConfig 3 -There are two possile scenarios, but not both: +# There are two possile scenarios, but not both: 7.1) Install the latest released version 7.2) Install directly from SVN @@ -223,20 +255,20 @@ 7.1+7.2) Now proceed with the ISPConfig installation. -Now start the installation process by executing: +# Now start the installation process by executing: php -q install.php -The installer will configure all services like postfix, sasl, courier, etc. for you. A manual setup as required for ISPConfig 2 (perfect setup guides) is not nescessary. To login to the ISPConfig controlpanel, open the following URL in your browser (replace the IP to match your settings!): +# The installer will configure all services like postfix, sasl, courier, etc. for you. A manual setup as required for ISPConfig 2 (perfect setup guides) is not nescessary. To login to the ISPConfig controlpanel, open the following URL in your browser (replace the IP to match your settings!): http://192.168.0.100:8080/ -the default login is: +# the default login is: user: admin password: admin -In case you get a permission denied error from apache, please restart the apache webserver process. +# In case you get a permission denied error from apache, please restart the apache webserver process. -- Gitblit v1.9.1