phpMyAdmin is one of the most popular and widely used web-based database management tools. It a free and open source PHP application that allows the users to manage single or multiple SQL database servers locally or on a remote server using a web browser (GUI). phpMyAdmin is very handy and useful. We can easily create, rename, delete and edit databases, tables or fields, execute SQL commands, import and export tables, create and modify users, etc., all via an easy-to-use GUI. In this tutorial, we will guide you through the steps of installing phpMyAdmin on an Ubuntu 16.04 VPS running with […]
MySQL 5.6 introduces a new features that must be used with great care. A MySQL users password can be marked as expired. This way, a DBA can force a user to set or reset his password. The MySQL user must set a (new) password before he is allowed to do anything else. As a consequence, if a users password is expired all standard PHP MySQL API connect calls will fail. Applications stop working unless the application is changed to include a user dialog for setting a new password. To develop such a dialog for resetting an expired password one has to use a new connection flag introduced in PHP 5.4.12-dev. Don’t panic: to get in trouble DBA actions have to be at one level with dropping the MySQL user of a production PHP application…
Relax: IF MySQL 5.6 AND IF …AND IF …
You are being warned in time about a pitfall that DBAs may tap into in the …[Read more]
This week I've been using phpMyAdmin for what feels like the first time in years. I'm happier at the command line, but needed some graphical representation of information and easy ways to export example queries for the book I'm working on. I noticed that phpMyAdmin now has a Designer tab, which shows relationships between tables and allows you to define them.
If your table types don't support foreign keys, you can still draw links in here, and phpMyAdmin will show the id fields as links to the data they represent, which is quite a nice touch (MyISAM doesn't support foreign keys). If your database does support foreign keys, then I found this post which explained that you must have an index on the column that will …
If so then were is it installed on your publicly accessible website. If the location is where the documentation states not to put it, or in other popular locations then you can easily become open to an attack. The following are apache logs of a simple hacker test to find a potential security hole on a new IP public address for a client.
My advice is never have PHPMyAdmin accessible by default. You should use HTTP authentication, firewall rules and additional security practices all to protect any level of access to your data.
18.104.22.168 - - [02/Feb/2011:05:29:24 -0500] "GET //phpmyadmin/ HTTP/1.1" 401 290 "-" "Made by ZmEu @ WhiteHat Team - www.whitehat.ro" 22.214.171.124 - - [02/Feb/2011:05:29:24 -0500] "GET //phpMyAdmin/ HTTP/1.1" 401 290 "-" "Made by ZmEu @ WhiteHat Team - www.whitehat.ro" 126.96.36.199 - - [02/Feb/2011:05:29:24 -0500] "GET //pma/ HTTP/1.1" 401 290 "-" "Made by ZmEu @ WhiteHat Team - www.whitehat.ro" 188.8.131.52 - - …[Read more]
Following the opening keynote “Dolphins, now and beyond”, Marc Delisle presented on “State of phpMyAdmin”.
phpMyAdmin is an DBA administration tool for MySQL available today in 57 different languages. This is found today in many distributions, LAMP stack products and also in cpanel. The product is found at http://phpmyadmin.net.
There are current two versions, the legacy 2.x version to support older php 3.x & 4.x, The current version 3.x is for PHP 5.2 or greater.
The current UI includes some new features including.
- calendar input for date fields
- meta data for mime types e.g images, which is great for showing the output as an image, otherwise blob data
- Relational designer with the able to show and create foreign …
We had 12 projects, and by the time we’ve hit mid-terms, we’ve decided to cull 2 project so far, leaving us with 10 projects.
This year, the MySQL project can really divide itself into three groups – those hacking on MySQL, Drizzle, or phpMyAdmin. Next year, will we see others? I certainly hope so…
Drizzle – Padraig O’Sullivan is doing an excellent job at working on a new implementation of the INFORMATION_SCHEMA. Nathan Williams is doing great work at code cleanup for Drizzle, and making it conform to C++ standards. Jiangfeng Peng is hacking on batch nested loop join’s in Drizzle.
phpMyAdmin – Derek Schaefer is adding import improvements to phpMyAdmin, while Tomas Srnka is working on adding MySQL Replication support for phpMyAdmin (and impressing his mentor!). Zahra Naeem is working on change tracking of data/structures, and you’d expect some more work after the mid-term, once some problems are worked …[Read more]
I caught up with Marc Delisle (we have a relatively old interview with him on the MySQL DevZone) recently, and got him to give us an introduction to phpMyAdmin, the several books he’s written, and how the project gets new features from the Google Summer of Code. What’s really impressive? They continue winning awards (Marc won one from MySQL in 2009 as well!), and have a user base of nearly 18.5 million (this is downloads — not just users, considering how common it is in shared hosting environments). Watch the video for more.
Since I’m creating a new install of a development environment on an XP gaming machine, I thought I’d just document the process for posterity. Make sure you are running at least Service Pack 2. Here is the version I’m installing: … Continue reading →
phpMyAdmin and MySQL Forge, along with the MySQL Build Farm initiative were the main MySQL related benefactors of Google Summer of Code 2008. phpMyAdmin got BLOB Streaming support and a simplified setup script, MySQL Forge got RSS and Atom feeds and the MySQL Build Farm got a test schedule.
Directly mentored by phpMyAdmin originator Marc Delisle, GSoC student Raj Kissu Rajandran completed the BLOB streaming support in phpMyAdmin. This is how he describes his project goals (which are now achieved):
It is often common to come across a website, especially a blog, that is built on a pairing of MySQL and PHP. Seeing as how most of those who run such websites on the Internet do not have access to a Shell account or have experience in managing applications from the command-line, …[Read more]