List:General Discussion« Previous MessageNext Message »
From:Rolando Edwards Date:November 29 2010 4:27pm
Subject:RE: Verifying security
View as plain text  
To verify that root has a password, do the following:

1) service mysql restart --skip-grant-tables
2) In MySQL, SELECT CONCAT('''',user,'''@''',host,'''') mysql_user,password from
mysql.user where user='root';
This will show every host that root can login as along with the PASSWORD
function-encrypted of the root password
3) service mysql restart

Make sure you have the user 'root'@'localhost';

With regard to --skip-networking, keep in mind that this blocks TCP/IP DB Connections
This will not block socket-based connections
i.e., this will block 'root'@'127.0.0.1', but not 'root'@'localhost'

Rolando A. Edwards
MySQL DBA (CMDBA)

155 Avenue of the Americas, Fifth Floor
New York, NY 10013
212-625-5307 (Work)
201-660-3221 (Cell)
AIM & Skype : RolandoLogicWorx
redwards@stripped
http://www.linkedin.com/in/rolandoedwards


-----Original Message-----
From: Grant [mailto:emailgrant@stripped] 
Sent: Monday, November 29, 2010 9:02 AM
To: mysql@stripped
Subject: Verifying security

I've got a couple security questions for you guys.

Is there a way to verify I've set a password for mysql's root?

I was previously running mysqld without --skip-networking until I
noticed port: 3306 was referenced in mysqld.err.  The strange thing is
'nmap localhost' never found an open 3306 port and I wasn't running a
firewall on that system.  Does this behavior make sense to anyone?

- Grant

-- 
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe:    http://lists.mysql.com/mysql?unsub=1

Thread
Verifying securityGrant29 Nov
  • RE: Verifying securityRolando Edwards29 Nov
    • Re: Verifying securityGrant3 Dec
  • Re: Verifying securityMichael Dykman29 Nov
    • Re: Verifying securityGrant3 Dec