Databases, MySQL

Hardening a MySQL Server

Below are some quick tips that you should follow to secure your MySQL Server.

  • Secure root account with a strong password.
  • Apply all service packs, updates and hot fixes to Windows system, Linux System and MySQL Server.
  • Review all passwords for all users.
  • Change passwords for all users with null or empty password.
  • Review users access and security level and limit to the minimal.
  • Monitor logs and failed login attempts.
  • Do not grant FILE, PROCESS or SUPER privileges to non administrative users.
  • Do not allow the default full control of the database to local users.
  • Restrict or limit access to load_file function.
  • Do not allow the default permissions for remote user to connect to the database.
  • Restrict or limi access to load data infile and select into file.
  • Do not run MySQL on the same host as the web server.