why do you open your mysql port to the world?
if you want to let users in from any place, then an ssh tunnel is safer
(yes, works even on windows, using putty or whatever. and a user who
finds this difficult shouldn't be able to run sql commands!).
I completely agree with you; the problem is always the same: the
decisions are taken by non-technical staff in a lot of times.
I've proposed a ssh tunnels for MySQL remote connections... but it means
"so hard" for final customers....
If this is too much, at least use a different port to reduce the noise
(This won't add security, but will somehow limit exposure)[EMAIL PROTECTED]"
Of course.
--
Thanks,
Jordi Espasa Clofent
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
