The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Need to secure MySQL more than usual

Discussion in 'General Discussion' started by ne0shell, Apr 26, 2011.

  1. ne0shell

    ne0shell Well-Known Member

    Joined:
    Oct 9, 2003
    Messages:
    58
    Likes Received:
    0
    Trophy Points:
    6
    I have a client who has been getting attacked via his mysql port so I'm working on hardening his mysql installation.

    First, is there a simple way in a cPanel system to configure mysql to use unix sockets in place of TCP?

    Second, does anyone have a list of recommended my.cnf settings to secure the mysql server more than usual?

    The attacks are not getting into the server but have managed to cause corruption by interfering with legit traffic from a database driven site. We've restored backups but badly need a more lasting solution.
     
  2. LinuxTechie

    LinuxTechie Well-Known Member

    Joined:
    Jan 22, 2011
    Messages:
    502
    Likes Received:
    2
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Hello,

    Can you check whether the port 3306 is listening in the server? If it is, disable it.
     
  3. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Which MySQL version are you using on the machine? Any requests for assistance with MySQL actually would require knowing the version, since settings can vary, especially between major versions such as MySQL 4.1, 5.0 and 5.1.

    Code:
    mysql_config --version
    Next, what are your current /etc/my.cnf settings on the machine?
     
Loading...

Share This Page