Secure MySql
From ClarolineDoc
Some installation packages, like EasyPHP, install MySQL with a user 'root' and NO password. To give a password, use command line MySQL or use an application like PhpMyAdmin (with EasyPHP http://localhost/mysql/ - Select Users and privileges and Modifiy). For more security, you can create a new user MySQL who can only access the Claroline database and give him all rights except 'Grant'.
If Claroline is yet installed, you must also change configuration file claroline/inc/conf/claro_main_conf.inc.php.
// MYSQL $dbHost = "localhost"; $dbLogin = "root"; $dbPass = "newpassword";
[edit]
Secure PhpMyAdmin
If You use PhpMyAdmin, you can also protect it to force log in. In the configuration file C:\Program Files\EasyPHP\phpmyadmin\config.inc.php change lines
/** * The 'cookie' auth_type uses blowfish algorithm to encrypt the password. * If at least one server configuration uses 'cookie' auth_type, * enter here a passphrase that will be used by blowfish. */ $cfg['blowfish_secret'] = 'whatyouwant';
$cfg['Servers'][$i]['host'] = 'localhost'; // MySQL hostname or IP address
$cfg['Servers'][$i]['port'] = ; // MySQL port - leave blank for default port
$cfg['Servers'][$i]['auth_type'] = 'cookie'; // Authentication method (config, http or cookie based)?
$cfg['Servers'][$i]['user'] = 'root'; // MySQL user
$cfg['Servers'][$i]['password'] = 'newpassword'; // MySQL password (only needed
// with 'config' auth_type)
