MySQL Forums
Forum List  »  Newbie

Re: How safe is a MySQL server exposed to the internet?
Posted by: Bill Karwin
Date: August 16, 2006 01:27PM

I agree with Bob. Exposing the MySQL port (3306 by default) to the internet is not secure. Data (except for passwords) are transmitted in clear, unencrypted form, and the protocol itself may be hacked to permit attackers access to your system.

There have been CERT security advisories published in the past for flaws in MySQL, which permit remote attackers to gain access to a system (example: https://www.kb.cert.org/vuls/id/602457). These flaws are typically resolved quickly, but there's always a chance another security flaw exists (as is true of all software).

Anyway, I would not recommend exposing the MySQL port to the internet.

Options: ReplyQuote


Subject
Written By
Posted
Re: How safe is a MySQL server exposed to the internet?
August 16, 2006 01:27PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.