Difference between revisions of "Securing mysql with a script"
From MyWiki
| (3 intermediate revisions by the same user not shown) | |||
| Line 14: | Line 14: | ||
</source> | </source> | ||
| + | |||
| + | not tested the sql script below | ||
<source lang="sql"> | <source lang="sql"> | ||
#!/bin/bash | #!/bin/bash | ||
| Line 21: | Line 23: | ||
# Kill the anonymous users | # Kill the anonymous users | ||
mysql -e "DROP USER ''@'localhost'" | mysql -e "DROP USER ''@'localhost'" | ||
| − | # Because our hostname varies we | + | # Because our hostname varies we will use some Bash magic here. |
mysql -e "DROP USER ''@'$(hostname)'" | mysql -e "DROP USER ''@'$(hostname)'" | ||
# Kill off the demo database | # Kill off the demo database | ||
| Line 32: | Line 34: | ||
</source> | </source> | ||
| + | Run the above like this :<br> | ||
| + | mysql -sfu root < "mysql_secure_installation.sql" <br> | ||
Latest revision as of 12:48, 28 August 2017
mysql_secure_installation <<EOF
y
secret
secret
y
y
y
y
EOF
not tested the sql script below
#!/bin/bash # Make sure that NOBODY can access the server WITHOUT a password mysql -e "UPDATE mysql.user SET Password = PASSWORD('CHANGEME') WHERE User = 'root'" # KILL the anonymous users mysql -e "DROP USER ''@'localhost'" # Because our hostname varies we will USE SOME Bash magic here. mysql -e "DROP USER ''@'$(hostname)'" # KILL off the demo DATABASE mysql -e "DROP DATABASE test" # Make our changes take effect mysql -e "FLUSH PRIVILEGES" # Any subsequent tries TO run queries this way will GET access denied because lack OF usr/pwd param
Run the above like this :
mysql -sfu root < "mysql_secure_installation.sql"
