How to strengthen Mysql database server Security? -


  1. If we have server1 for all files (file server), server2 for mysql database (database server) Want to use. Do not need to connect to the IP address of the second (MySQL server) to access the database in the server 2 for Server1 Server1?

In this case, remote mysql connection.

However, I noticed that some people have a comment on the security issue.

Remote access to MySQL is not very secure when your remote computer first connects to your MySQL database, password is encrypted before being transmitted over the Internet. But after that, all the data has been passed as an encrypted "plain text" if someone was able to see your connection data (such as "hacker" that is capturing data from an encrypted WiFi connection you are not using ), That person will be able to see the part or all your databases

So I'm thinking of ways to protect it?

  1. Allow mysql entry on remote 1 by allowing static IP address
  2. to allow remote access to the server
  3. changed to 3306 for other ports Do you?

Any advice? Connect the data to

1) This will help to keep your username / password as well as the data that needs to be transferred. Used to be. Another option is that you have more than one machine or daemons, which need to be shared.

2) Do not allow remote root logins. Disable at least "root" account, because this is the first thing that an attacker is trying and a tremendous force.

3) User accounts are using.

4) Remove file_priv from all accounts If this is provided, it will allow an attacker to read and write files on the server, which hosts mysql hosting < / P>


Comments

Popular posts from this blog

MySql variables and php -

url rewriting - How to implement the returnurl like SO in PHP? -

Which Python client library should I use for CouchdB? -