Solved

Mysql hardening and db security

Posted on 2012-03-30
2
540 Views
Last Modified: 2012-04-11
Guys,
I have my questions with customer with db hardening with Mysql, do anyone here have any best practices
0
Comment
Question by:motioneye
2 Comments
 
LVL 7

Assisted Solution

by:designatedinitializer
designatedinitializer earned 250 total points
ID: 37789674
1. Change mysql 'root' user password;
2. Disable remote access to mysql server;
3. Always create a db user for each db, and always grant that said user only the privileges needed on a daily basis. For instance, 99% of web applications won't be needing to ALTER, CREATE or DROP tables;
4. Use transactions;
5. Always encrypt passwords and sensitive information;
6. Use unreversible encryption (e.g. MD5) for passwords;
7. Log all errors;
8. Sanitize all input before performing your queries;
0
 
LVL 15

Accepted Solution

by:
Insoftservice earned 250 total points
ID: 37799588
Normally we do the fix in my.cnf /ini files .
please view the links
try out
mysql_secure_installation

http://www.greensql.com/articles/mysql-security-best-practices
http://security-24-7.com/hardening-guide-for-mysql-5-1-47-on-redhat-5-4-64bit-edition/
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
duplicate data not insert in mysql 46 51
Mysql not caching queries 4 64
Connect MySql database to wordpress site 3 54
selecting date modified field from a table 2 39
Fore-Foreword Today (2016) Maxmind has a new approach to the distribution of its data sets.  This article may be obsolete.  Instead of using the examples here, have a look at the MaxMind API (https://www.maxmind.com/en/geolite2-developer-package). …
All XML, All the Time; More Fun MySQL Tidbits – Dynamically Generate XML via Stored Procedure in MySQL Extensible Markup Language (XML) and database systems, a marriage we are seeing more and more of.  So the topics of parsing and manipulating XM…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now