Anybody can access the url, but to work with phpMyAdmin he needs to give valid MySQL credentials. The credentials in config-db.php are used only as a control user for phpMyAdmin - it allows phpMyAdmin to manipulate it's tables without giving all users privileges to do so.
And for the suexec I think you would have problem with most php applications in Debian which do use database, so I don't think this bug is something what can be solved in phpMyAdmin, but rather by a change in Debian policy for web applications. -- phpmyadmin setup unsuitable for suexec setup https://bugs.launchpad.net/bugs/416183 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
