php-suhosin and PhpMyAdmin conflicts

When installing for the first time my system i just followed the guide and installed the php-suhosin package, as it was recommended for security reasons…

Now i want to install PhpMyAdmin and in the guide says :

"Be aware, if you have opted to install the php-suhosin package, there are some known issues when using phpMyAdmin" and there is a link to a page with a lot of instructions on how to solve that, but to be honest, as i´m new to all of this, it´s a little scary. :?

Any of you think it´s a good idea to have PhpMyAdmin? It´s easier for me to work with databases there.

Or, do you think i can unistall the php-suhosin package?

Any thoughts?

Thanks for any help.

5 Replies

Personally I don't use suhosin, I've tried it and found it causes more problems than it solves, hell I found a bug in it, went to go check the site forums and they've been down for years.

I also don't use phpmyadmin but have done it's a good tool but I prefer mysql workbench http://wb.mysql.com/ which allows you to control your mysql instance from your local computer over ssh.

Do you think it´s possible to unistall the php-suhosin package?

sure, just do apt-get remove php5-suhosin

The PHP packages shipped with Debian and Ubuntu already incorporate some (but not all) of the changes made by the Suhosin project. When you check out their official descriptions, such as this, it says "This version of PHP5 was built with the Suhosin patch." This is usually all you need if you keep your web apps (such as WordPress) up to date and you don't do anything stupid. To repeat, you already get some of the most important Suhosin patches by installing the official packages from Debian or Ubuntu.

The php5-suhosin package contains the rest of the changes made by the Suhosin project. These patches are grouped into a separate package because they can cause significant changes to the way PHP behaves. If you have untrusted applications running on your server (e.g. you let strangers host their sites on your server), it might be a good idea to get paranoid and enable the additional protections afforded by php5-suhosin. But Suhosin also tends to break some applications, such as phpmyadmin.

Thanks guys for your valuable information. I think the starting guide could be improved to let people know what hybinet has mentioned. Mainly beacause of conflicts and strange beahavior, it just recommend you to install it.

BTW, i unistalled it.

Thansk obs and hybinet.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct