SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Enthusiast Ckeren's Avatar
    Join Date
    Jun 2001
    Location
    AU
    Posts
    98
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    How to make MySQL totally secure ?

    What I've done so far:

    1.set root password
    2.grant a username with password for only do the SELECT command and can only connect from specified host name only.

    I'm using that username to retrieve data from php.

    but this is only a very basic thing... and yet it is totally not save at all.
    I can actually log into database with any user like this way

    mysql -uanyname_u_think

    wuaazzzzzzzahhhhpppp you're inside the database as a SUPER USER(can do any thing I want)...
    Isn't it good ???? for me this is not good but very good for intruders.

    Please advice what should be done guys

  2. #2
    code addict Abstraction's Avatar
    Join Date
    Apr 2001
    Location
    Des Moines, IA
    Posts
    346
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Here is a decent article from the folks at MySQL.

    4.2.2 How to Make MySQL Secure Against Crackers

  3. #3
    SitePoint Enthusiast Ckeren's Avatar
    Join Date
    Jun 2001
    Location
    AU
    Posts
    98
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Originally posted by Abstraction
    Here is a decent article from the folks at MySQL.

    4.2.2 How to Make MySQL Secure Against Crackers
    That was done at the very first time setup root password.

    just wondering.

    If you guys try to login into mysql just type like this

    on Linux
    shell> mysql

    on win2k
    c:\mysql\bin\mysql

    even though I've done this (4.2.2 How to Make MySQL Secure Against Crackers). This MySQL will still let you in as a ROOT user.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •