On 2013-05-30 13:06, Gilles Detillieux wrote:
On 05/30/2013 12:55 PM, Tim Lavoie wrote:
On 2013-05-30, at 11:10, "Gilbert E. Detillieux" gedetil@cs.umanitoba.ca wrote:
Also, if the thought of managing a SQL database is what you find intimidating, I'd highly recommend installing phpMyAdmin. It makes most of the tasks you're likely to encounter much easier to deal with. As long as you've got a basic understanding of relational database concepts, this saves you having to remember SQL and MySQL syntax.
If you're using phpMyAdmin, I'd hope you're comfortable with system tasks anyway, especially patching. Between the number of CVEs for the package and the amount of door-knocking I see looking for it, I'd want to lock it down very, very well.
Yeah, I thought the same thing when Gilbert suggested phpMyAdmin. If I do end up setting it up, I will certainly a) read up on how to secure it properly, and b) make sure I stay on top of updates for it.
a) should definitely include allowing it only from the localhost interface and/or a trusted subnet. (If you need remote access, it should be through a secure tunnel.)