Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

set linux box that only computer in the club can get the data

Posted on 2006-11-22
6
215 Views
Last Modified: 2010-04-20
I have mysql database and some file in folde /home/image that I want only computer of my staff can go to up date data, I have one computer that is a server install linux fedola 3 and 10 computer of mystaff  that i want 10 computer to update my sql data base and file in folder /home/image please suggest me the methodthat  only 10 computer of my staff can update data form the server the 10 computer will update automaticly every day with difference time
0
Comment
Question by:teera
6 Comments
 
LVL 14

Accepted Solution

by:
ppfoong earned 250 total points
ID: 17995944

For MySQL, you need to enable tcpip socket, as well as grant user access to the IP addresses of the 10 computers.

The MySQL command is:

GRANT ALL PRIVILEGES ON *.* TO 'root'@'ip.address.of.remote.host' IDENTIFIED BY 'thepassword';
 

For the server, it would be straightforward if you have shorewall and iptables installed.

Just edit the /etc/shorewall/rules file, add in:

ACCEPT  net:ip.address.of.remote.host1       fw             all
ACCEPT  net:ip.address.of.remote.host2       fw             all
ACCEPT  net:ip.address.of.remote.host3       fw             all

and restart the shorewall service.

All other IP addresses will be denied.
0
 

Author Comment

by:teera
ID: 17996133
Hi ppfoong
the problem is I use adsl for client
0
 
LVL 30

Assisted Solution

by:Kerem ERSOY
Kerem ERSOY earned 100 total points
ID: 17999217
In fact you have supplied very less information.

Is your MySQL server open to internet via an ADSL line ?
What OS your 10 clients use ?
Do they have fixed IP addresses ?

In fact I will suggest you to use SSH on theclients. and do a port redirection on Shorewall Firewall to allow SSH connections
and You must do a port forwarding on SSH client side. This way you can both:
- be sure that only previously authorized users (by SSH) be able to access MySQL athus this will be preventing you from attacks to your MySQL port (3306)
- SSH suppors decre file transfers so you can automate transfers on a certain time.
0
Master Your Team's Linux and Cloud Stack!

The average business loses $13.5M per year to ineffective training (per 1,000 employees). Keep ahead of the competition and combine in-person quality with online cost and flexibility by training with Linux Academy.

 
LVL 8

Expert Comment

by:jk2001
ID: 18000534
If possible, tunnel your traffic through OpenVPN.  That will give you a stable IP address on a fake subnetwork.  You can then open a port from a single machine in your office that tunnels all mysql traffic to the server.
0
 
LVL 14

Assisted Solution

by:ppfoong
ppfoong earned 250 total points
ID: 18000657

jk2001 is right. OpenVPN will be a solution if your users are from remote network with dynamic IP address. With OpenVPN, you establish secured VPN tunnel to your HQ, and have the option to assigned specific local VPN IP address to the client.

There is a simple GUI OpenVPN configuration interface for Windows too.

http://www.itsatechworld.com/2006/01/29/how-to-configure-openvpn/


0
 
LVL 30

Expert Comment

by:Kerem ERSOY
ID: 18001447
It is OK to use OpenVPN but here the user will only need to uredirect a single port and it is obvious that setting-up OpenVPN much more harder than installing PuTTY on clients. Besides SSH server is already installed in all inux Distributions. With SSH they will have a fixed address to connect too.

So I still think that using SSH port redirection is simpler to implement yet as secure as the OpenVPN solution.
0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Choosing CentOS 16 108
Penetration Testing home based work 3 91
Linux VM 6 101
Using Linux to replace Windows Server 2008 R2 for network drives 5 107
The purpose of this article is to show how we can create Linux Mint virtual machine using Oracle Virtual Box. To install Linux Mint we have to download the ISO file from its website i.e. http://www.linuxmint.com. Once you open the link you will see …
The purpose of this article is to demonstrate how we can upgrade Python from version 2.7.6 to Python 2.7.10 on the Linux Mint operating system. I am using an Oracle Virtual Box where I have installed Linux Mint operating system version 17.2. Once yo…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question