Apache Friends Support Forum

[mli]

Hi everyone,

I read the FAQ about how to secure the "config.inc.php" file but I must be doing something wrong because when the login window pops up it does not accept my chosen username and password.

These are my new settings:

$cfg['Servers'][$i]['auth_type'] = 'http';
$cfg['Servers'][$i]['user'] = 'root';
$cfg['Servers'][$i]['password'] = '1234';

When I try to access phpmyAdmin the windows login window pops up and for some reason it does not accept my login (username = "root" and password = "1234"

I have tried to leave username blank and only enter the password.

I have also tried to change user from "root" to "mikael" but without success.

I have also tried changing "http" to "cookie".

I feel I'm out of options so if anyone could help me I'd be very happy! :>

Ps, if someone knows which port MySQL and Apache runs on by default please let me know (I might as well configure my firewall) Ds.

Kindly,
Mikael
Sweden

[Wiedmann]

1.) Before you make any changes in "config.inc.php", you must change your password in MySQL itself. Use the link "Rights" in phpMyAdmin ...

2.) ... and then change the settings for phpMyAdmin in "config.inc.php" to your new MySQL password. Or better, change only the "auth_type" to "cookie" or "http" and login with your new password.

[mli]

Ok, password is implemented (and working).

The (final) question is if my installation is secure from outside access to my computer? That is, I'll for the time being only use Xampp for local webpage developing so I hope Apache and MySQL is not open for the outside internet?! :>

Cheers,
Mikael

[JonathanS]

Ok, password is implemented (and working).

The (final) question is if my installation is secure from outside access to my computer? That is, I'll for the time being only use Xampp for local webpage developing so I hope Apache and MySQL is not open for the outside internet?! :>

Cheers,
Mikael

If you have a half decent firewall
(google ZoneAlarm Basic and Sygate Personal Free Firewall), than yes.

In effect the firewall should ask if you want to allow <file name>
access to the internet, or if you want to allow <ip> to connect to <file name>
via port <number>, or something near those lines.

Also the XP w/ SP2 built-in firewall is NOT a good one!
I'd suggest you disable it and get a actual one, like I said
either ZoneAlarm Basic or Sygate Personal Firewall; both are free.

[mli]

I've got an odd thing going on. After I updated my config file and priviliges (deleted "pma" user and applied same password to "root" user as one I use in my config.inc.php file) I can no longer CREATE A NEW DATABASE (it says "no priviliges").

When I click on the privliges I see that the "root" user (which is also the one I logged in with) has ALL PRIVILIGES.

Could this has anything to do with the fact that I deleted the "pma" user?

Any idea what is going on here?

Cheers,
Mikael