Need MySQL database security solutions

[Arumugan]

Hi all,

With the popularity of the network, network-based Apps also increasing. Network Database is one of them. By one or several Servers to provide services for many customers, this approach gave rise to a lot of convenience, but also creates an opportunity to lawless elements. As the data is transferred over the network, which can be intercepted during transmission, or by means of access to the database is. For these reasons, the database security is very important. Therefore, I want to know the MySQL Database in the network security features. Please suggest. Thanks in advance.

[Reegan]

MySQL account is the simplest security measures. Each account by the user name, password, and location usually by a server name, IP or wildcard component. Such as user john from server1 log john may be different from the right to log on server2. MySQL's user structure is the user name / password / location. This does not include the database name. The following two command database1 and database2 set SELECT user rights.

Code:

GRANT SELECT ON database1 .* to 'xyz' @ 'server1' IDENTIFIED BY 'password123';
GRANT SELECT ON database2 .* to 'xyz' @ 'server1' IDENTIFIED BY 'password211';

[opaper]

MySQL uses a lot of Authorization Form to track users and these users different permissions. These tables are in the mysql database MyISAM tables. These security information stored in MySQL is very meaningful. Therefore, we can use standard SQL to set different permissions. Generally in the MySQL database, you can use different types of security check:
# Login validation - That is the most commonly used user name and password authentication. Once you have entered the correct user name and password, this authentication can be passed.
# Authorized - In the login is successful, it requires the user to set its specific competence. Such as whether you can delete the database tables and so on.

[MindSpace]

You can also use Access Control in MySQL. The security types more specific. It involves the user of the data table what kind of operations, such as whether you can edit the database, can query the data and so on. The composition of access control by a number of privileges, these privileges related to the use and operation of what the data in MySQL. They are Boolean, that is either allowed or not allowed. The following is a list of these privileges: SELECT is set whether users can use SELECT to query the data. If the user does not have this privilege, it can only perform some simple SELECT commands, such as the calculation of expression (SELECT 1 +2), or the date conversion (SELECT Unix_TIMESTAMP (NOW ())) and so on. Best of luck.

[Modifier]

You can also use SSL in MySQL. More than one account security only in the ordinary Socket data transmission, so that is very unsafe. Therefore, MySQL in version 4.1 provides the right after the SSL (Secure Scokets Layer) support. MySQL is free to use OpenSSL library. As MySQL Linux With the Linux version are generally issued with their own, so they do not use SSL by default for data transfer. If you want to open the SSL functionality, the need for hava_openssl set variables. MySQL Windows Version of Open SSL has joined. Also face an order is to check whether your MySQL open SSL. Check and reply.

[Praetor]

If the database holds sensitive data such as bank card passwords, customer information, etc., you may want to form an encrypted data stored in the database. So even if someone access to your database and see, these data are difficult to obtain one of the true information. In the application of large amounts of information, perhaps you just want to pay a small part of encryption, such as the user's password. These passwords should not be clear in the form of preservation, they should be stored in encrypted form in the database. Under normal circumstances, most of the system, which includes the use of MySQL is by itself a hash algorithm to encrypt sensitive data. Best of luck.