hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : MySQL Security
Reply

Forum Jump

MySQL Security

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old
Junior Guru Wannabe
 
Join Date: Jan 2001
Posts: 79
Question

We are currently running two servers. One of the servers is solely dedicated to the mysql database. My question is would it be a good idea to have the mysql port on a different one than the standard 3306 just so that hackers would have a hard tie finding it.

I know that they can always scan the ports but we will block out all port access from the outside world using portsentry but was just wondering if that extra added level of security would be achieved by running on a different port number.

Thanks for all the help.



Sponsored Links
  #2  
Old
Web Hosting Guru
 
Join Date: Oct 2000
Posts: 337
Changing port numbers for servers is kind of like parking your car behind the house instead of in the garage. It makes it a little harder to find, but if someone wants to steal it, they're going to find it.

If you're concerned about security, it's far better to run MySQL on the local server, and communicate to it through a socket. Then you can turn off the TCP port entirely.


  #3  
Old
Junior Guru Wannabe
 
Join Date: Jan 2001
Posts: 79
Why is it better to run on a local server? I would assume that a dedicated machine would be best?

If I run it on a local machine and turn off tcp port completely, what would be the purpose, we would not be able to run a web server?

Any more ideas for tight security on two machines?

Sponsored Links
  #4  
Old
Web Hosting Guru
 
Join Date: Oct 2000
Posts: 337
I'm talking about turning off TCP access for the database server process, not the web server.

If you run the database server on the local machine, your application can talk to it through a UNIX socket. Then, there's no need to have the database server run on a TCP port that's accessible to the outside world.

Of course, if the server gets busy enough, the database server will probably need to be moved to a separate machine.

Reply

Related posts from TheWhir.com
Title Type Date Posted
Tesora's OpenStack DBaaS Supports MongoDB, Cassandra, Redis, and MySQL Web Hosting News 2014-05-23 14:53:11
Google Releases Hosted Database Service Cloud SQL to General Availability Web Hosting News 2014-02-12 13:46:02
Google Cloud Provides Support For Native MySQL Connections Web Hosting News 2013-11-01 14:36:06
Hackers Pack More Sophistication into Simple Scripts to Attack PHP Applications Web Hosting News 2013-09-09 11:52:48
PHP And MySQL Scaling: Preparing A Startup For Growth Blog 2014-04-24 13:27:35


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:
WHT Membership
WHT Membership



 

X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?