安装完mysql-server ,
通海网站建设公司创新互联建站,通海网站设计制作,有大型网站制作公司丰富经验。已为通海成百上千提供企业网站建设服务。企业网站搭建\外贸网站制作要多少钱,请找那个售后服务好的通海做网站的公司定做!
会提示可以运行mysql_secure_installation,运行mysql_secure_installation会执行几个设
置:
为root用户设置密码;
删除匿名账号;
取消root用户远程登录;
删除test库和对test库的访问权限;
刷新授权表使修改生效;
通过这几项的设置能够提高mysql库的安全,建议生产环境中mysql安装这完成后一定要运行一
次mysql_secure_installation,详细步骤请参看下面的命令;
复制代码,代码如下:
[root@server1 ~]# ;
mysql_secure_installation;
NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS ;
RECOMMENDED FOR ALL MySQL;
SERVERS IN PRODUCTION USE PLEASE READ EACH STEP ;
CAREFULLY;
In order to log into MySQL to secure it we'll need the ;
current;
password for the root user If you've just installed MySQL;
and;
you haven't set the root password yet the password will be blank;
so ;
you should just press enter here;
Enter current password for root (enter for none)–初次运行直接回车;
OK successfully used ;
password moving on;
Setting the root password ensures that nobody can log ;
into the MySQL;
root user without the proper authorisation;
Set root ;
password?[Y/n] – ;
是否设置root用户密码,输入y并回车或直接回车;
New password: – 设置root用户的密码;
Re-enter new password: – 再输入一次你设置的密码;
Password updated ;
successfully;
Reloading privilege tables;
Success;
By default a ;
MySQL installation has an anonymous user allowing anyone;
to log into MySQL ;
without having to have a user account created for;
them. This is intended only ;
for testing and to make the installation;
go a bit smoother. You should ;
remove them before moving into a;
production environment;
Remove anonymous ;
users [Y/n] – ;
是否删除匿名用户,生产环境建议删除,所以直接回车;
Success;
Normally root should only be ;
allowed to connect from localhost;
This ensures that someone cannot guess ;
at the root password from the network;
Disallow root login remotely;
[Y/n] ;
–是否禁止root远程登录,根据自己的需求选择Y/n并回车,建议禁止;
By default MySQL ;
comes with a database named 'test' that anyone can;
access This is also ;
intended only for testing, and should be removed;
before moving into a ;
production environment;
Remove test database and access to it [Y/n] – 是否删除test数据库 直接回车;
Dropping test ;
database;
Success。
不熟悉mysql,但是oracle,是必须建立用户后附权限才可以正常登陆的。跟oracle匿名用户scott一点关系没有。
比如匿名账号容易带来安全隐患,建议删除,执行如下SQL语句即可删除权限表中所有的匿名账号:
mysqldelete from mysql.user where user='';
mysqldelete from mysql.db where user='';
mysqldelete from mysql.tables_priv where user='';
mysqldelete from mysql.columns_priv where user='';
mysqldelete from mysql.procs_priv where user='';
因为在默认设置下,这个匿名用户在localhost上几乎拥有和root一样的权限。很可能因为访问者上传一个PHP文件,用这个PHP文件创建一个新用户,并给他一个较高的权限,然后用这个新用户连接到服务器的MySQL,对该服务器的MySQL进行管理。删除命令如下: