10 steps to fortify the security of your MySQL installation

For those who wish to enhance or fortify the security of the MySQL installation the following technical 10 steps are a good start.


Step 1: Run MySQL in a chroot jail
Step 2: Restrict or disable remote access
Step 3: Change default root password and change root username
Step 4: Remove anonymous accounts and accounts with empty passwords
Step 5: Remove sample database
Step 6: Run MySQL as an unprivileged user
Step 7: Grant minimum privileges for database users
Step 8: Enable MySQL logging and restrict access to logs
Step 9: Encrypt data stored in the database using MySQL built-in functions
Step 10: Keep a look out for patches


Details at http://www.net-security.org/secworld.php?id=4135

Leave a Reply