[imp] mysql port 3306

[Mark Orenstein]

Yes, I'm using linux (RedHat 6.2).  Can you further explain what you mean by
"bind the MySQL process to listen only on the 127.0.0.1 and how?  I'm a
newbie.  In the meantime, I've been looking at a bit of MySQL doc and it
appears that all localhost communication is done via a Unix socket, so I've
gone ahead and blocked all access to port 3306.

Mark Orenstein


-----Original Message-----
From: Rick Romero [mailto:rick@valeoinc.com]
Sent: Tuesday, November 21, 2000 11:38 AM
To: imp@lists.horde.org
Subject: RE: [imp] mysql port 3306



I was just looking for that here's the link to the command line
option:
http://www.mysql.com/documentation/mysql/commented/manual.p
hp?section=Command-line_options

--bind-address=IP

On 21 Nov 2000, at 16:28, Anil Madhavapeddy wrote:

> Mark Orenstein wrote:
> >
> > I'm running sendmail/imap/horde/imp/mysql on one PC.  I'm looking to
secure
> > this PC as much as I can.  Via a netstat -anp, I've noticed that mysql
is
> > listening on port 3306.  Is it possible to use ipchains to only allow
> > localhost source address access to this port?
> >
>
> Just bind the MySQL process to listen only on the 127.0.0.1 (localhost)
> address, so it won't be seen from the outside world.  Or a domain socket
> only (I believe it has some special behaviour for localhost anyhows).
>
> You shouldn't really need to mess with ipchains (I assume you are
> running Linux).
>
> --
>  Anil Madhavapeddy / "Oi luv moi brick!"
>  anil@recoil.org   /       - Father Jack
>
> --
> IMP mailing list: http://horde.org/imp/
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: imp-unsubscribe@lists.horde.org
>
>


Rick Romero
IT Manager
Valeo, Inc.
rick@valeoinc.com
262-695-4841

--
IMP mailing list: http://horde.org/imp/
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: imp-unsubscribe@lists.horde.org