Skip to content
Snippets Groups Projects

Update databases.md

Merged Update databases.md
github/fork/denics/patch-2 into 6-0-stable
Merged gitlab-qa-bot requested to merge github/fork/denics/patch-2 into 6-0-stable

Created by: denics

run mysql_secure_installation to secure the freshly installed mysql server

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: dplarson

    Although I agree this is probably a good idea, can you provide more details/justification for adding this step to the installation guide?

    By Administrator on 2013-08-26T05:29:18 (imported from GitLab project)

    By Administrator on 2013-08-26T05:29:18 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: denics

    Hi @dplarson, it is usually a good practice, in production environments, to use the mysql_secure_installation command, to secure the initial installation. The default mysql installation come with the possibility of an empty root password (!), the possibility to connect as root from outside localhost, the possibility to connect as anonymous and a test db. All of these elements are dangerous, and the script has no side effects.

    By Administrator on 2013-08-26T18:55:41 (imported from GitLab project)

    By Administrator on 2013-08-26T18:55:41 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: dplarson

    So mysql_secure_installation:

    1. disables empty root passwords
    2. disables connection as root from outside localhost
    3. disables anonymous connections
    4. removes test database

    Sounds good to me. :thumbsup:

    By Administrator on 2013-08-26T20:46:52 (imported from GitLab project)

    By Administrator on 2013-08-26T20:46:52 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: denics

    ;)

    By Administrator on 2013-08-26T20:51:22 (imported from GitLab project)

    By Administrator on 2013-08-26T20:51:22 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: axilleas

    :thumbsup: That's what we have in the CentOS guide. Maybe add some comments like in CentOS for new users:

    Secure MySQL by entering a root password and say "Yes" to all questions

    By Administrator on 2013-08-27T10:35:25 (imported from GitLab project)

    By Administrator on 2013-08-27T10:35:25 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: Razer6

    @jacobvosmaer Looks good

    By Administrator on 2013-09-27T07:49:16 (imported from GitLab project)

    By Administrator on 2013-09-27T07:49:16 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: Razer6

    @jacobvosmaer I did not see that this PR was going to 6-0-stable. I think we should cherry-pick this to master

    By Administrator on 2013-09-27T11:18:56 (imported from GitLab project)

    By Administrator on 2013-09-27T11:18:56 (imported from GitLab)

  • gitlab-qa-bot
    gitlab-qa-bot @gitlab-qa-bot ·
    Author Owner

    Created by: jacobvosmaer

    Thanks for spotting that @razer6. I cherry-picked it.

    By Administrator on 2013-09-27T14:33:36 (imported from GitLab project)

    By Administrator on 2013-09-27T14:33:36 (imported from GitLab)

Please register or sign in to reply