GitLab

Created by: denics

run mysql_secure_installation to secure the freshly installed mysql server

Created by: dplarson

Although I agree this is probably a good idea, can you provide more details/justification for adding this step to the installation guide?

By Administrator on 2013-08-26T05:29:18 (imported from GitLab project)

Created by: denics

Hi @dplarson, it is usually a good practice, in production environments, to use the mysql_secure_installation command, to secure the initial installation. The default mysql installation come with the possibility of an empty root password (!), the possibility to connect as root from outside localhost, the possibility to connect as anonymous and a test db. All of these elements are dangerous, and the script has no side effects.

By Administrator on 2013-08-26T18:55:41 (imported from GitLab project)

Created by: dplarson

So mysql_secure_installation:

1. disables empty root passwords
2. disables connection as root from outside localhost
3. disables anonymous connections
4. removes test database

Sounds good to me. 👍

By Administrator on 2013-08-26T20:46:52 (imported from GitLab project)

Created by: denics

;)

By Administrator on 2013-08-26T20:51:22 (imported from GitLab project)

Created by: axilleas

👍 That's what we have in the CentOS guide. Maybe add some comments like in CentOS for new users:

Secure MySQL by entering a root password and say "Yes" to all questions

By Administrator on 2013-08-27T10:35:25 (imported from GitLab project)

Created by: Razer6

@jacobvosmaer Looks good

By Administrator on 2013-09-27T07:49:16 (imported from GitLab project)

Created by: Razer6

@jacobvosmaer I did not see that this PR was going to 6-0-stable. I think we should cherry-pick this to master

By Administrator on 2013-09-27T11:18:56 (imported from GitLab project)

Created by: jacobvosmaer

Thanks for spotting that @Razer6. I cherry-picked it.

By Administrator on 2013-09-27T14:33:36 (imported from GitLab project)