4

I am trying to secure my Apache and MySQL from hackers. Please tell me how. Questions are inside [closed]

view full story
linux-howto

http://serverfault.com – Possible Duplicate: Secure LAMP server for production use I don't know how this will affect my server but my apache service is running under root. Is this dangerous? Then I have created a user in MySQL. The new user have this grant options: SHOW GRANTS for newuser; GRANT USAGE ON *.* TO 'newuser'@'%' IDENTIFIED BY PASSWORD '*newuserpass' GRANT ALL PRIVILEGES ON `newuser`.* TO 'newuser'@'%' My questions: What are the consequences of running apache under root How can I change the ownership of apache? The new user's have all the privileges, and any ip address can connect remo (HowTos)

dayu's picture
Submitted by dayu on 01/09/2012 – Made popular on 01/09/2012

Stories similar to I am trying to secure my Apache and MySQL from hackers. Please tell me how. Questions are inside [closed]

This is a new install and I have only set the root passwords for localhost, 127.0.0.1 and .

I know the password is correct as I can log in with root@localhost to the mysql server and can also create users. However, when I try to grant privileges to the newly created user I get the dreaded "Access denied for user root@localhost (using password: YES)" error message.

GRANT ALL PRIVILEGES ON .

hi I am trying to connect mysql server running on amazon linux instance but did not succeeded yet .

Scenario : i installed mysql server in amazon's ec2 instance .

I am new to scripting

I keep getting the error var2= is not an identifier when I run this script as another user. BUT when I run it as myself, the script completes without error. Any idea why? I assume it is because the new user has a different environment . How do I make the variables active for this new user? I don't have setenv and I've already exported them.

I have a mysql user connecting from Server2 to Server1 over SSL (mysql 5.0.77).

Here is the grants for this user on Server1, (server2 has an ip in the range xx.xx.xx.%)

mysql> show grants for user@'xx.xx.xx.%'; +-------------------------------------------------------------------------------------------------------------------------------+ | Grants for user@xx.xx.xx.%

A bit of information:

select current_user: root@127.0.0.1

show grants for current_user(): 'GRANT ALL PRIVILEGES ON *.* TO 'root'@'127.0.0.1' IDENTIFIED BY PASSWORD 'omited'

Service string: "C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt" --defaults-file="C:\Program Files\MySQL\MySQL Server 5.0\my.ini" MySQL

Basically, I do not see any new files.

I've been trying to figure out why I keep getting this error when I try to connect to the MySQL server with the following commands.

$~ mysql -u username -h SQLserver -p Enter password: ERROR 1045 (28000): Access denied for user 'username'@'myIP' (using password: YES)

I've done the following: Port is open in the firewall other wise I wouldn't get the error it'd just timeout. MySQL server not run

I have a problem using view with MySQL server 5.0 (5.0.92)

I cannot use view with a user granted like that :

GRANT USAGE ON *.* TO 'testuser'@'' IDENTIFIED BY PASSWORD '**********'; GRANT ALL PRIVILEGES ON `testuser`.* TO 'testuser'@'';

I can create view, but when I try to select in, I have this messages :

ERROR 1356 (HY000): View 'testuser.v' references invalid table(s) or column(s) or funct

Not sure if this is possible but is there a way to grant the Apache user same level of permissions (ownership) as root only on specific folder(s).

Why I need this: We have a CentOS 6.2 server with apache setup as our development server, and we use only the root user because the server is an internal server and doesn't have any outside access, every day we upload quite a lot of files and setup new

I'm a newbie with FTP/User permissions. I have a domain and a dedicated server. Lets say my domain is www.mysite.com All my files are inside httpd folder.

I'd like to create a folder for a new user inside httpd, for example /newuser.