How do I secure phpMyAdmin?

Method 1: Change phpMyAdmin URL

  • Navigate to WebAdmin > Virtual Hosts > Context
  • Change URI from /phpmyadmin to (for example) /secure

Method 2: Allow specific IP only

  • Navigate to WebAdmin > Virtual Hosts > Context > phpmyadmin
  • Change Access Allowed from * to (for example) 1.2.3.4 and set Access Denied to *

Please substitute 1.2.3.4 with your IPs/subnets

Method 3: Require a Password

  • Log into SSH console and create a password file:
    $ sudo touch /usr/local/lsws/conf/PASS
    $ sudo chown lsadm:lsadm /usr/local/lsws/conf/PASS
    
  • Navigate to WebAdmin > Virtual Hosts > Security
  • Click + under Realm List then set Realm Name = example, and User DB Location = /usr/local/lsws/conf/PASS
  • Click /usr/local/lsws/conf/PASS to create a user/password
  • Navigate to WebAdmin > Virtual Hosts > Context > phpmyadmin
  • Set Realm to example

For help learning how to connect to your VPS using SSH please see our Quick Start Guide on SSH using Putty.

Category: OpenLiteSpeed