20i Reseller Hosting

MySQL vulnerability

Discussion in 'Scripts and Coding' started by Blossom, Jun 12, 2012.

Thread Status:
Not open for further replies.
  1. Blossom

    Blossom Well-Known Member

    Joined:
    Oct 2010
    Posts:
    1,428
    Likes Received:
    57
  2. Domain Forum

    Acorn Domains Elite Member

    Joined:
    1999
    Messages:
    Many
    Likes Received:
    Lots
    articles.co.uk
     
  3. PoshTiger United Kingdom

    PoshTiger Well-Known Member

    Joined:
    Jun 2011
    Posts:
    1,480
    Likes Received:
    67
    Thanks for the info...

    I'm off to change the login names to my databases to something obscure...
     
  4. RobM

    RobM Retired Member

    Joined:
    Mar 2012
    Posts:
    3,289
    Likes Received:
    469
    Basically don't use 'root' for anything. Move off the standard SSH/MySQL ports etc. This will stop 99.999% of brute force hacks.
     
  5. jimm United Kingdom

    jimm Active Member

    Joined:
    Feb 2008
    Posts:
    689
    Likes Received:
    13
    You probably have the user root dont forget ;)
    And do you really need MySQL exposed to the web? FW it off to no one or a list of allowed hosts!

    And having said that ive tested many servers (mainly Plesk and cPanel servers mind) and found not one which was exploitable from this bug...
     
  6. retired_member21

    retired_member21 Retired Member

    Joined:
    Apr 2008
    Posts:
    742
    Likes Received:
    13
Thread Status:
Not open for further replies.