Re: denyhosts-like app for MySQLd?
- From: Jordi Espasa Clofent <jordi.espasa@xxxxxxxxxxx>
- Date: Tue, 22 Jan 2008 16:08:20 +0100
why do you open your mysql port to the world?
if you want to let users in from any place, then an ssh tunnel is safer (yes, works even on windows, using putty or whatever. and a user who finds this difficult shouldn't be able to run sql commands!).
I completely agree with you; the problem is always the same: the decisions are taken by non-technical staff in a lot of times.
I've proposed a ssh tunnels for MySQL remote connections... but it means "so hard" for final customers....
If this is too much, at least use a different port to reduce the noise (This won't add security, but will somehow limit exposure).scribe@xxxxxxxxxxx"
Of course.
--
Thanks,
Jordi Espasa Clofent
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: denyhosts-like app for MySQLd?
- From: mouss
- Re: denyhosts-like app for MySQLd?
- References:
- denyhosts-like app for MySQLd?
- From: Jordi Espasa Clofent
- Re: denyhosts-like app for MySQLd?
- From: mouss
- denyhosts-like app for MySQLd?
- Prev by Date: Re: [fbsd] denyhosts-like app for MySQLd?
- Next by Date: Re: ident daemon: oIdentd creating a lot of processes
- Previous by thread: Re: denyhosts-like app for MySQLd?
- Next by thread: Re: denyhosts-like app for MySQLd?
- Index(es):
Relevant Pages
|
|
