The following are optional, but recommended, steps to help improve the security of your ReadingRecord server.
# # Access control directives for *ALL* virtual hosts on this webserver. # It is safer to put them here instead of inside a <VirtualHost> directive # because they work for both https & https access. # # From http://httpd.apache.org/docs/2.0/sections.html: # It is important to never use <Location> when trying to restrict access to # objects in the filesystem. This is because many different webspace # locations (URLs) could map to the same filesystem location, allowing your # restrictions to be circumvented. # ############################## # # # Limit access to phpMyAdmin # # # ############################## <Directory "/var/www/html/phpmyadmin/"> order deny,allow allow from 192.168.1.38 # (Support staff desktop #1) allow from 192.168.1.50 # (Support staff desktop #2) deny from all </Directory>
The multi-layered approach used on ReadingRecord servers hosted by the Westminster Public Library and Limited North, LLC uses the following method. One advantage to this method is it prevents phpMyAdmin access from outside the library entirely:
This method is not currently documented on the ReadingRecord wiki, but if there's enough interest I may consider doing so.
Previous: Install & Configure PHP | Next: Install & Configure ReadingRecord