Today I reached the task to make the PHPMyAdmin install secure on one of my Ubuntu servers.
The machine is running Ubuntu Server 12.10, but you can follow this article also for Ubuntu 13.04 and newer.
Since a web multi-domain server is running on it, my idea is:
- Have only one third level to reach PHPMyAdmin: pma1.mydomain.ltd
- Remove /phpmyadmin from every domain.
- Additional security is provided by http authentication.