So,
to use this mode, we have to define (once) in config.inc.php a secret password
that will be used to securely encrypt all passwords stored as cookies from this
phpMyAdmin installation.
This is done by putting a secret password here:
$cfg['blowfish_secret'] = 'SantaLivesInCanada';
Then, for each server-specific section, use the following:
$cfg['Servers'][$i]['auth_type'] = 'cookie';
Installing phpMyAdmin
[ 36 ]
The next time we start phpMyAdmin, we will see the login panel.
By default, phpMyAdmin displays (in the login panel) the last username for which
a successful login was achieved for this particular server, as retrieved from the
permanent cookie. If this behavior is not acceptable (if we would prefer that someone
else who logs in from the same workstation should not see the previous username),
we can set the following parameter to FALSE:
$cfg['LoginCookieRecall'] = FALSE;
A security feature was added in phpMyAdmin 2.6.0: a time limit for the validity
of the entered password. This feature helps to protect the working session. After a
successful login, our password is stored in a cookie, along with a timer. Every action
in phpMyAdmin resets the timer. If we stay inactive a certain number of seconds, as
defined in $cfg['LoginCookieValidity'], we are disconnected and have to login
again. The default is 1800 seconds.
Pages:
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61