cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
54820153df
openbsd-ports/www/phpmyadmin/pkg
History
sthen 4b7ad2646b various tweaks to phpMyAdmin packaging. 
feedback/OKs from aja@ william@ jasper@ giovanni@ kevlo@

- move MESSAGE to README.

- add missing dep on php-mysqli.

- change the unpack/fake-install method to use the standard
extract infrastructure.

- @sample contrib/htaccess into .htaccess so apache can use it by
default if allowoverride is enabled. this does some basic user-agent
checks to reduce the risk of phpmyadmin sites showing up in
search engines.

- provide an @sample'd apache config file which enables use of
the .htaccess file and restricts access to localhost. talk about
this in README so people know what's going on. (phpMyAdmin has
a history of security-related bugs, but because it's rather
commonly used it's much better to have it in ports so that
it can be updated easily; these changes make the default
installation safer).
2012-08-31 16:40:38 +00:00
..
DESCR
PLIST various tweaks to phpMyAdmin packaging. 2012-08-31 16:40:38 +00:00
README various tweaks to phpMyAdmin packaging. 2012-08-31 16:40:38 +00:00

README 

$OpenBSD: README,v 1.1 2012/08/31 16:40:38 sthen Exp $

+-----------------------------------------------------------------------
| Running ${FULLPKGNAME} on OpenBSD
+-----------------------------------------------------------------------

phpMyAdmin has been installed into ${INSTDIR}.

If using Apache, you can make this accessible to clients by enabling
the configuration file:

    # ln -s ../modules.sample/phpMyAdmin-httpd.conf /var/www/conf/modules/
    # /etc/rc.d/httpd restart

By default, this sets an alias for /phpMyAdmin and restricts access
to connections coming from localhost.  It also uses AllowOverride to
enable an .htaccess file restricting access from search engine bots.
(The previously recommended method of adding a symlink under htdocs/ 
is not compatible with <Directory> overrides).

If you need to allow wider access, after considering security
implications, edit /var/www/conf/modules.sample/phpMyAdmin-httpd.conf
and restart Apache.

You can check that you have a working installation by accessing:
http://localhost/phpMyAdmin/index.php

SECURITY WARNING
================
Be aware that phpMyAdmin is a frequently attacked target due to a
history of security problems.  You are advised to restrict access to
trusted workstations or access it on localhost via an SSH tunnel.