Обсуждение: Setting up phppgadmin under https/ssl (Apache)
Hi... This is as much an apache question as anything else, but I think it's appropriate here. I've been using phppgadmin on my local machine. Now I've installed it on a remote server running Ubuntu lts 8.04. I figured I'd try and put it under ssl/https under Apache (mod_ssl). I've created a test certificate, but I'm having trouble figuring out exactly how to get phppgadmin working under SSL. Can someone step me through the process? Thanks
samslists@gmail.com wrote: > Hi... > > This is as much an apache question as anything else, but I think it's > appropriate here. > > I've been using phppgadmin on my local machine. Now I've installed it > on a remote server running Ubuntu lts 8.04. > > I figured I'd try and put it under ssl/https under Apache (mod_ssl). > I've created a test certificate, but I'm having trouble figuring out > exactly how to get phppgadmin working under SSL. Can someone step me > through the process? First, make sure your SSL virtual server is working correctly for serving simple static pages. On Ubuntu, Debian, and other Debian derivatives the apache config is structured like: apache2/ mods_available/ alias.load .... mods_enabled alias.load -> ../mods_available/alias.load ... sites_available/ default sites_enabled/ default -> ../sites_available/default If you copy sites_available/default to sites_available/ssl and then edit it to add the appropriate directives to enable SSL, specify your cert/key paths, etc. See: http://httpd.apache.org/docs/2.0/mod/mod_ssl.html If you already have access to phppgadmin in your default HTTP virtual server, it should now work in your HTTPs virtual server as well. If not, you'll have to add an appropriate Alias directive to map the phppgadmin directory into the server's virtual tree. You may also need to enable the PHP modules by symlinking them from modules-available to modules-enabled. Note that if you want your SSL and non-SSL servers to provide exactly the same content you should use an include file to pull in most of the body of the <NameVirtualHost> directive in each file. You might want to direct further questions to somewhere like: http://www.linuxquestions.org/ -- Craig Ringer
Wow...so does no one use phppgadmin on servers that they are connected to via the internet? Or if you do, how do you go about securing it so that no one snoops your password? Thanks On May 16, 12:34 am, "samsli...@gmail.com" <samsli...@gmail.com> wrote: > Hi... > > This is as much an apache question as anything else, but I think it's > appropriate here. > > I've been using phppgadmin on my local machine. Now I've installed it > on a remote server running Ubuntu lts 8.04. > > I figured I'd try and put it under ssl/https under Apache (mod_ssl). > I've created a test certificate, but I'm having trouble figuring out > exactly how to get phppgadmin working under SSL. Can someone step me > through the process? > > Thanks
On Sun, 2008-05-18 at 23:33 -0700, samslists@gmail.com wrote: > Wow...so does no one use phppgadmin on servers that they are connected > to via the internet? Or if you do, how do you go about securing it so > that no one snoops your password? > > Thanks > > > On May 16, 12:34 am, "samsli...@gmail.com" <samsli...@gmail.com> > wrote: > > Hi... > > > > This is as much an apache question as anything else, but I think it's > > appropriate here. > > > > I've been using phppgadmin on my local machine. Now I've installed it > > on a remote server running Ubuntu lts 8.04. > > > > I figured I'd try and put it under ssl/https under Apache (mod_ssl). > > I've created a test certificate, but I'm having trouble figuring out > > exactly how to get phppgadmin working under SSL. Can someone step me > > through the process? ---- I wouldn't recommend making phppgadmin available from the Internet in any form but... <Directory "/var/www/html/phpldapadmin"> SSLRequireSSL </Directory> would require SSL to access...adjust paths to suit. I also would require user authentication to access the path (I use mod_authz_ldap) so that the user accessing it is logged and of course, then the security aspects of postgres would then apply too. Craig
I can't imagine you have to do much of anything to it. Once apache is set up to handle https:// requests, the rest should just happen. On Mon, May 19, 2008 at 12:33 AM, samslists@gmail.com <samslists@gmail.com> wrote: > Wow...so does no one use phppgadmin on servers that they are connected > to via the internet? Or if you do, how do you go about securing it so > that no one snoops your password? > > Thanks > > > On May 16, 12:34 am, "samsli...@gmail.com" <samsli...@gmail.com> > wrote: >> Hi... >> >> This is as much an apache question as anything else, but I think it's >> appropriate here. >> >> I've been using phppgadmin on my local machine. Now I've installed it >> on a remote server running Ubuntu lts 8.04. >> >> I figured I'd try and put it under ssl/https under Apache (mod_ssl). >> I've created a test certificate, but I'm having trouble figuring out >> exactly how to get phppgadmin working under SSL. Can someone step me >> through the process? >> >> Thanks > > > -- > Sent via pgsql-general mailing list (pgsql-general@postgresql.org) > To make changes to your subscription: > http://www.postgresql.org/mailpref/pgsql-general >