Ladies, gentleman, I'm trying to secure a mysql server and according to the MySQL certification guide the file system mysql install directories should be owned by the user/group mysql.mysql. Also the server should be started using NOT the root account but the mysql account which easily can be done by modifying /etc/my.cnf file. Assuming that /usr/local is the installation if you did install from a tar ball to this directory this must be done:
chown -R mysql.mysql /usr/local chmod u =rwx,go=rx /usr/local chmod u =rwx,go=rx /usr/local/mysql/bin chmod u =rwx,go=rx /usr/local/mysql/libexec chmod -R go=rx /usr/local/mysql/data Also: chown mysql.mysql /etc/my.cnf chmod 666 /etc/my.cnf Since I installed mysql upon installation and runs a a daemon is the /var/lib/mysql directory the mysql installation directory? Is there any other installation directory that I have to modify ownership, permissions to secure the mysql server? Has anyone done this before? I will really appreciate your answers? Thank you very much. +-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+ |E|d|u|a|r|d|o| |L|a|n|d|a|v|e|r|i| +-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+ +-+-+-+-+ +-+-+-+-+-+-+ |G|N|U|-|L|i|n|u|x| |U|s|e|r| |4|3|3|5|1|2| +-+-+-+-+-+-+-+-+-+ +-+-+-+-+ +-+-+-+-+-+-+ ____________________________________________________________ Receive Notifications of Incoming Messages Easily monitor multiple email accounts & access them with a click. Visit http://www.inbox.com/notifier and check it out! -- fedora-list mailing list [email protected] To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines
