ISOS6
Verified User
Hello,
If I may allow remote access to MySQL by not binding, it is very dangerous?
If I may allow remote access to MySQL by not binding, it is very dangerous?
MySQL bind og not
- Thread starter ISOS6
- Start date
zEitEr
Super Moderator
Hello,
Your question is too ambiguous. Will you be more specific, or even start with Googling?
Note, I would put your question next to following questions:
— Is it very dangerous to have SSH on 22 port open worldwide?
or even
— Is it very dangerous to have HTTP on 80 port open worldwide?
There can not be any simple answer on your question. Somebody would answer "YES", and they will be right. But the same time others, who would answer "NO", will be still right.
So if you use strong passwords and you're sure that your users use always strong passwords. And you're not limited with monthly bandwidth, then you might want to open MySQL *:3306 worldwide.
Note, I don't answer your question either affirmatively or negatively. You should decide yourself, whether it is dangerous or not for your particular case.
Your question is too ambiguous. Will you be more specific, or even start with Googling?
Note, I would put your question next to following questions:
— Is it very dangerous to have SSH on 22 port open worldwide?
or even
— Is it very dangerous to have HTTP on 80 port open worldwide?
There can not be any simple answer on your question. Somebody would answer "YES", and they will be right. But the same time others, who would answer "NO", will be still right.
So if you use strong passwords and you're sure that your users use always strong passwords. And you're not limited with monthly bandwidth, then you might want to open MySQL *:3306 worldwide.
Note, I don't answer your question either affirmatively or negatively. You should decide yourself, whether it is dangerous or not for your particular case.
ISOS6
Verified User
For my part, okay. I use the password I do not remember even once, long and strong combination of numbers, uppercase and lowercase letters, etc.. But when a customer wants to run Navicat and can not because MySql is bind. So the risk is only per user? Or can affect most users in case the hack etc..
zEitEr
Super Moderator
You should realize that open port makes risks higher. I'm not a secure officer or any kind of that, if you want you should start with reading MySQL changes history and try to understand what bugs and whole have ever been found.
I'm not even sure, whether a password is encrypted when you connect to remote MySQL server via Internet. A forum is good place to ask questions, but you'd better read some official docs and manuals.
I'm not even sure, whether a password is encrypted when you connect to remote MySQL server via Internet. A forum is good place to ask questions, but you'd better read some official docs and manuals.
ISOS6
Verified User
Opened access because I found out with Directamins ingenious feature does not allow foreign matter before you add the IP address via the control panel 
nobaloney
NoBaloney Internet Svcs - In Memoriam †
I'm still not sure what you mean. For access from the Internet mysql needs to work on an open port; generally port 3306. The port needs to be open through your firewall, mysql needs to bind to it. Or it won't work.
Then your database has to allow remote access and use a secure password.
Jeff
Then your database has to allow remote access and use a secure password.
Just what ingenious feature are you writing about?
Jeff
zEitEr
Super Moderator
My guess is that it's possible to manage "Access Hosts" list in Directadmin:
Home » DOMAIN.COM » MySQL Setup » View DATABASE_NAME