XAMPP security

This page gives you a quick overview about the security status of your XAMPP installation. (Please continue reading after the table.)

Subject
Status
These XAMPP pages are accessible by network for everyone UNSECURE
Every XAMPP demo page you are right now looking at is accessible for everyone over network. Everyone who knows your IP address can see these pages.
The phpMyAdmin user pma has no longer no password SECURE
The MySQL user root has no longer no password SECURE
The FTP password for user daemon is still 'xampp' UNSECURE
By using the default password for the FTP user daemon everyone can upload and change files for your XAMPP webserver. So if you enabled ProFTPD you should set a new password for user daemon.

The green marked points are secure; the red marked points are definitively unsecure and the yellow marked points couldn't be checked (for example because the sofware to check isn't running).

To fix or close all these matters simply call

/opt/lampp/xampp security

This will start an interactive program.

	Subject	Status
	These XAMPP pages are accessible by network for everyone	UNSECURE
	Every XAMPP demo page you are right now looking at is accessible for everyone over network. Everyone who knows your IP address can see these pages.

	The phpMyAdmin user pma has no longer no password	SECURE

	The MySQL user root has no longer no password	SECURE

	The FTP password for user daemon is still 'xampp'	UNSECURE
	By using the default password for the FTP user daemon everyone can upload and change files for your XAMPP webserver. So if you enabled ProFTPD you should set a new password for user daemon.