Howtos / Articles

Monitor your network for new hosts using arpwatch

For computers to communicate with each other over a network, they need to be able to know how to convert a IP address, into the physical address of the network card (MAC address). If your computer doesn’t have the MAC address for the specific host you are trying to communicate with, your computer will send out a broadcast ARP request, to find out who owns the IP you are trying to contact. These ARP requests are broadcast out over a…

Read more [...]

Change the MySQL root password

Ensuring you have a secure, and hard to guess MySQL root password is critical on production servers. If you don’t currently have a strong MySQL root password, please update it using the details below. Likewise, if you think someone may know the password, who shouldn’t, change the password immediately. Run the following SQL statement on the MySQL server to change the root users password: Obviously change ’1234′ with the password you would like to set. Make sure you set a…

Read more [...]

Reloading the MySQL priviledge tables

After making changes to MySQL permissions/user accounts, make sure you flush the provilege tables using the following command: FLUSH PRIVILEGES; This will make any changes take effect immediately.…

Read more [...]

Disable remote root logins into MySQL

To keep a MySQL database server secure, you should always only allow root logins from the local machine (localhost, 127.0.0.1 for IPv4, and ::1 for IPv6. Run the following SQL script against the MySQL server, to remove all access from remote hosts for the ‘root’ user account: DELETE FROM mysql.user WHERE User=’root’ AND Host NOT IN (‘localhost’, ’127.0.0.1′, ‘::1′); After making changes to permissions/user accounts, make sure you flush the provilege tables using the following command: FLUSH PRIVILEGES;…

Read more [...]

Remove anonymous user from MySQL

MySQL includes an anonymous user account that allows anyone to connect into the MySQL server without having a user account. This is meant only for testing, and should be removed before the database server is put into a production environment. Run the following SQL script against the MySQL server to remove the anonymous user account: DELETE FROM mysql.user WHERE User=”; After making changes to permissions/user accounts, make sure you flush the provilege tables using the following command: FLUSH PRIVILEGES;…

Read more [...]



Page 24 of 38« First...10...20212223242526272829...Last »