MySql Security Query

mjjk91 · - Joined: 03 Feb 2004 Posts: 75 Location: Australia

G'Day All,

I am running MySQL successfully with the abyss web server. I just have a question about security. I have password protected the MySQL database server, but, i would like to know what else i could do to protect it? At the moment, my database can still be accessed via the internet "http://URL/phpmyadmin", and if someone was to have appropriate software, or just guess my password, they would have access to my database, which is obviously a lot of trouble. So, any ways i can highten the security on the MySQL database. Ideally, i would love to just have it running locally, that way it cannot make the Internet. Is this possible? How would i go about it?

Cheers all

Mick Koch

TRUSTAbyss · - Joined: 29 Oct 2003 Posts: 3752 Location: USA, GA

Use the beta version of Abyss and setup a IP Controle record , I do this for
my phpMyAdmin , it only allows you to access it locally. Hope That Helps!

mjjk91 · - Joined: 03 Feb 2004 Posts: 75 Location: Australia

Okies, i have downloaded the beta and have found the IP Control screen. Currently, there is only access for http://127.0.0.1. What would i need to add to protect my phpmyadmin database? Would i simply just add a deny ip record to http://URL/phpmyadmin?

Cheers

Mick Koch

TRUSTAbyss · - Joined: 29 Oct 2003 Posts: 3752 Location: USA, GA

No , you have to add a record for the allowed IP and set it to Allow/Deny in
the Order field , this will make sure only localhost is allowed in that path.

Virtual Path: /phpmyadmin
Order: Allow/Deny
Allowed IP's: 127.0.0.1

mjjk91 · - Joined: 03 Feb 2004 Posts: 75 Location: Australia

beautiful, works great. Cheers mate.

Mick Koch

TRUSTAbyss · - Joined: 29 Oct 2003 Posts: 3752 Location: USA, GA

Hey , any time , glad I could solve your problems.